Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\xx.scr.exe
|
"C:\Users\user\Desktop\xx.scr.exe"
|
 |
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2D53000
|
stack
|
page read and write
|
||
|
780000
|
unkown
|
page readonly
|
||
|
2FF8000
|
heap
|
page read and write
|
||
|
511A000
|
trusted library section
|
page read and write
|
||
|
2DE0000
|
heap
|
page readonly
|
||
|
2FBB000
|
heap
|
page read and write
|
||
|
2D46000
|
stack
|
page read and write
|
||
|
2FB7000
|
heap
|
page read and write
|
||
|
7C2000
|
unkown
|
page read and write
|
||
|
5104000
|
trusted library section
|
page read and write
|
||
|
7E7000
|
unkown
|
page readonly
|
||
|
7B6000
|
unkown
|
page readonly
|
||
|
2DF0000
|
heap
|
page read and write
|
||
|
3023000
|
heap
|
page read and write
|
||
|
510A000
|
trusted library section
|
page read and write
|
||
|
561F000
|
stack
|
page read and write
|
||
|
780000
|
unkown
|
page readonly
|
||
|
2E25000
|
heap
|
page read and write
|
||
|
5100000
|
trusted library section
|
page read and write
|
||
|
6A50000
|
trusted library allocation
|
page read and write
|
||
|
6A81000
|
heap
|
page read and write
|
||
|
5230000
|
trusted library allocation
|
page read and write
|
||
|
2FE9000
|
heap
|
page read and write
|
||
|
50E1000
|
trusted library allocation
|
page read and write
|
||
|
2D5D000
|
stack
|
page read and write
|
||
|
54DF000
|
stack
|
page read and write
|
||
|
7B6000
|
unkown
|
page readonly
|
||
|
3016000
|
heap
|
page read and write
|
||
|
2FFB000
|
heap
|
page read and write
|
||
|
551E000
|
stack
|
page read and write
|
||
|
2FFF000
|
heap
|
page read and write
|
||
|
7E8000
|
unkown
|
page readonly
|
||
|
5220000
|
heap
|
page read and write
|
||
|
2FFD000
|
heap
|
page read and write
|
||
|
781000
|
unkown
|
page execute read
|
||
|
512A000
|
trusted library section
|
page read and write
|
||
|
2D62000
|
stack
|
page read and write
|
||
|
7C2000
|
unkown
|
page write copy
|
||
|
2D6A000
|
stack
|
page read and write
|
||
|
4F2B000
|
stack
|
page read and write
|
||
|
7E6000
|
unkown
|
page read and write
|
||
|
2DD0000
|
heap
|
page read and write
|
||
|
2FB0000
|
heap
|
page read and write
|
||
|
2E20000
|
heap
|
page read and write
|
||
|
2FC8000
|
heap
|
page read and write
|
||
|
4DE4000
|
heap
|
page read and write
|
||
|
3000000
|
heap
|
page read and write
|
||
|
5124000
|
trusted library section
|
page read and write
|
||
|
5050000
|
heap
|
page read and write
|
||
|
5230000
|
unkown
|
page read and write
|
||
|
781000
|
unkown
|
page execute read
|
||
|
6A00000
|
heap
|
page read and write
|
||
|
50FA000
|
trusted library allocation
|
page read and write
|
||
|
53DE000
|
stack
|
page read and write
|
||
|
5114000
|
trusted library section
|
page read and write
|
||
|
2C66000
|
stack
|
page read and write
|
||
|
3011000
|
heap
|
page read and write
|
||
|
7E7000
|
unkown
|
page write copy
|
||
|
4DE0000
|
heap
|
page read and write
|
||
|
2D6D000
|
stack
|
page read and write
|
||
|
6A0C000
|
heap
|
page read and write
|
||
|
5110000
|
trusted library section
|
page read and write
|
||
|
5120000
|
trusted library section
|
page read and write
|
||
|
5240000
|
heap
|
page read and write
|
||
|
7C9000
|
unkown
|
page read and write
|
||
|
3018000
|
heap
|
page read and write
|
||
|
2FC0000
|
heap
|
page read and write
|
||
|
502D000
|
stack
|
page read and write
|
||
|
5780000
|
heap
|
page read and write
|
There are 59 hidden memdumps, click here to show them.