Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
hYrJbjnzVc.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\rage131MP.tmp
|
ASCII text, with no line terminators
|
modified
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\hYrJbjnzVc.exe
|
"C:\Users\user\Desktop\hYrJbjnzVc.exe"
|
|
|
|
C:\Windows\SysWOW64\schtasks.exe
|
schtasks /create /f /RU "user" /tr "C:\ProgramData\MPGPH131\MPGPH131.exe" /tn "MPGPH131 HR" /sc HOURLY /rl HIGHEST
|
|
|
|
C:\Windows\SysWOW64\schtasks.exe
|
schtasks /create /f /RU "user" /tr "C:\ProgramData\MPGPH131\MPGPH131.exe" /tn "MPGPH131 LG" /sc ONLOGON /rl HIGHEST
|
|
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
|
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
|
|
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe
|
"C:\Users\user\AppData\Local\RageMP131\RageMP131.exe"
|
|
|
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe
|
"C:\Users\user\AppData\Local\RageMP131\RageMP131.exe"
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://ipinfo.io/widget/demo/191.96.150.225T5
|
unknown
|
||
|
https://ipinfo.io/g_Entries
|
unknown
|
||
|
https://ipinfo.io/
|
unknown
|
||
|
https://www.maxmind.com/en/locate-my-ip-address
|
unknown
|
||
|
https://ipinfo.io/tG
|
unknown
|
||
|
https://ipinfo.io/5
|
unknown
|
||
|
https://ipinfo.io/M%
|
unknown
|
||
|
https://ipinfo.io/https://www.maxmind.com/en/locate-my-ip-addressWs2_32.dll
|
unknown
|
||
|
http://www.winimage.com/zLibDll
|
unknown
|
||
|
https://ipinfo.io/widget/demo/191.96.150.225
|
unknown
|
||
|
https://t.me/RiseProSUPPORT
|
unknown
|
||
|
https://t.me/RiseProSUPPORTD
|
unknown
|
||
|
https://ipinfo.io/ameSpace=
|
unknown
|
||
|
https://ipinfo.io/widget/demo/191.96.150.225r2G
|
unknown
|
||
|
https://ipinfo.io/widget/demo/191.96.150.225R
|
unknown
|
There are 5 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
ipinfo.io
|
34.117.186.192
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
147.45.47.93
|
unknown
|
Russian Federation
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
|
RageMP131
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
734000
|
heap
|
page read and write
|
||
|
1240000
|
direct allocation
|
page read and write
|
||
|
46A2000
|
heap
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
3DBF000
|
stack
|
page read and write
|
||
|
1062000
|
unkown
|
page execute and read and write
|
||
|
844000
|
unkown
|
page execute and write copy
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4A70000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
4D60000
|
direct allocation
|
page execute and read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
4F2E000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
149E000
|
unkown
|
page execute and read and write
|
||
|
106C000
|
unkown
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
174E000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
2DEB000
|
stack
|
page read and write
|
||
|
34FF000
|
stack
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
7EBF000
|
stack
|
page read and write
|
||
|
4B90000
|
direct allocation
|
page execute and read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
5080000
|
direct allocation
|
page execute and read and write
|
||
|
D60000
|
heap
|
page read and write
|
||
|
2B9F000
|
stack
|
page read and write
|
||
|
34AF000
|
stack
|
page read and write
|
||
|
1A40000
|
heap
|
page read and write
|
||
|
70F0000
|
heap
|
page read and write
|
||
|
456F000
|
stack
|
page read and write
|
||
|
49EF000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
33DF000
|
stack
|
page read and write
|
||
|
114E000
|
unkown
|
page execute and read and write
|
||
|
5180000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1165000
|
unkown
|
page execute and write copy
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
5150000
|
direct allocation
|
page execute and read and write
|
||
|
EE1000
|
unkown
|
page execute and read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
354E000
|
stack
|
page read and write
|
||
|
442F000
|
stack
|
page read and write
|
||
|
37DE000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
729D000
|
stack
|
page read and write
|
||
|
5680000
|
direct allocation
|
page execute and read and write
|
||
|
D30000
|
unkown
|
page read and write
|
||
|
910000
|
direct allocation
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
4A80000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
4B96000
|
heap
|
page read and write
|
||
|
3F4E000
|
stack
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
72A7000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
12AE000
|
heap
|
page read and write
|
||
|
7327000
|
heap
|
page read and write
|
||
|
FB0000
|
heap
|
page read and write
|
||
|
328E000
|
stack
|
page read and write
|
||
|
E2E000
|
stack
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
46A5000
|
heap
|
page read and write
|
||
|
1157000
|
unkown
|
page execute and read and write
|
||
|
4CF0000
|
direct allocation
|
page execute and read and write
|
||
|
457E000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4C60000
|
direct allocation
|
page execute and read and write
|
||
|
EC0000
|
direct allocation
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
910000
|
direct allocation
|
page read and write
|
||
|
4C9D000
|
stack
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
5110000
|
direct allocation
|
page execute and read and write
|
||
|
1166000
|
unkown
|
page execute and write copy
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
12F4000
|
unkown
|
page execute and write copy
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
173C000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
6E69000
|
heap
|
page read and write
|
||
|
2B10000
|
direct allocation
|
page read and write
|
||
|
701E000
|
stack
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
299F000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4C90000
|
direct allocation
|
page execute and read and write
|
||
|
14AB000
|
unkown
|
page execute and write copy
|
||
|
8F0000
|
heap
|
page read and write
|
||
|
4DAF000
|
stack
|
page read and write
|
||
|
430E000
|
stack
|
page read and write
|
||
|
377F000
|
stack
|
page read and write
|
||
|
4DA0000
|
heap
|
page read and write
|
||
|
5040000
|
heap
|
page read and write
|
||
|
412F000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
355E000
|
stack
|
page read and write
|
||
|
42BF000
|
stack
|
page read and write
|
||
|
4DEE000
|
stack
|
page read and write
|
||
|
178C000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
14A4000
|
unkown
|
page execute and write copy
|
||
|
1134000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
1761000
|
heap
|
page read and write
|
||
|
5090000
|
direct allocation
|
page execute and read and write
|
||
|
D30000
|
unkown
|
page readonly
|
||
|
372F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
EBC000
|
unkown
|
page read and write
|
||
|
CDE000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
C9E000
|
stack
|
page read and write
|
||
|
5186000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
12FE000
|
unkown
|
page execute and read and write
|
||
|
46AF000
|
stack
|
page read and write
|
||
|
39C000
|
stack
|
page read and write
|
||
|
5120000
|
direct allocation
|
page execute and read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4B30000
|
direct allocation
|
page execute and read and write
|
||
|
D30000
|
unkown
|
page readonly
|
||
|
EC0000
|
direct allocation
|
page read and write
|
||
|
2C6E000
|
stack
|
page read and write
|
||
|
6B5000
|
unkown
|
page execute and read and write
|
||
|
4F70000
|
direct allocation
|
page execute and read and write
|
||
|
4C00000
|
trusted library allocation
|
page read and write
|
||
|
1166000
|
unkown
|
page execute and write copy
|
||
|
47C0000
|
heap
|
page read and write
|
||
|
90A000
|
heap
|
page read and write
|
||
|
4EF0000
|
direct allocation
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
949000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
509E000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
12FA000
|
unkown
|
page execute and read and write
|
||
|
4FB0000
|
direct allocation
|
page execute and read and write
|
||
|
5015000
|
direct allocation
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
1074000
|
unkown
|
page execute and read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
5190000
|
heap
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
73DE000
|
stack
|
page read and write
|
||
|
7EFE000
|
stack
|
page read and write
|
||
|
4B70000
|
direct allocation
|
page execute and read and write
|
||
|
779F000
|
stack
|
page read and write
|
||
|
443E000
|
stack
|
page read and write
|
||
|
978000
|
heap
|
page read and write
|
||
|
14A4000
|
unkown
|
page execute and write copy
|
||
|
4C50000
|
direct allocation
|
page execute and read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
EB0000
|
direct allocation
|
page read and write
|
||
|
407000
|
unkown
|
page read and write
|
||
|
12C2000
|
unkown
|
page execute and read and write
|
||
|
14AA000
|
unkown
|
page execute and read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
779E000
|
stack
|
page read and write
|
||
|
962000
|
heap
|
page read and write
|
||
|
5750000
|
direct allocation
|
page execute and read and write
|
||
|
984000
|
heap
|
page read and write
|
||
|
1763000
|
heap
|
page read and write
|
||
|
900000
|
heap
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
1240000
|
direct allocation
|
page read and write
|
||
|
5018000
|
direct allocation
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
33BF000
|
stack
|
page read and write
|
||
|
2DAF000
|
stack
|
page read and write
|
||
|
4FE0000
|
direct allocation
|
page execute and read and write
|
||
|
1062000
|
unkown
|
page execute and read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
965000
|
heap
|
page read and write
|
||
|
459E000
|
stack
|
page read and write
|
||
|
426F000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
5290000
|
heap
|
page read and write
|
||
|
3B9E000
|
stack
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
730000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
404F000
|
stack
|
page read and write
|
||
|
92A000
|
heap
|
page read and write
|
||
|
5170000
|
direct allocation
|
page read and write
|
||
|
341E000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
980000
|
heap
|
page read and write
|
||
|
42FE000
|
stack
|
page read and write
|
||
|
46CE000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
2C80000
|
direct allocation
|
page read and write
|
||
|
D4F000
|
heap
|
page read and write
|
||
|
7ADE000
|
stack
|
page read and write
|
||
|
1067000
|
unkown
|
page read and write
|
||
|
EB2000
|
unkown
|
page execute and read and write
|
||
|
3C9F000
|
stack
|
page read and write
|
||
|
4C40000
|
direct allocation
|
page execute and read and write
|
||
|
3E2E000
|
stack
|
page read and write
|
||
|
48EE000
|
stack
|
page read and write
|
||
|
38FE000
|
stack
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
EBC000
|
unkown
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
46A0000
|
heap
|
page read and write
|
||
|
4B80000
|
direct allocation
|
page execute and read and write
|
||
|
56B0000
|
direct allocation
|
page execute and read and write
|
||
|
39EE000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4BD0000
|
direct allocation
|
page execute and read and write
|
||
|
2F1E000
|
stack
|
page read and write
|
||
|
D31000
|
unkown
|
page execute and read and write
|
||
|
47D0000
|
heap
|
page read and write
|
||
|
366F000
|
stack
|
page read and write
|
||
|
3EFE000
|
stack
|
page read and write
|
||
|
5618000
|
direct allocation
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
4C80000
|
direct allocation
|
page execute and read and write
|
||
|
D25000
|
heap
|
page read and write
|
||
|
3EEE000
|
stack
|
page read and write
|
||
|
50F0000
|
direct allocation
|
page execute and read and write
|
||
|
3C6E000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
8DE000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
47C4000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
11F6000
|
unkown
|
page execute and read and write
|
||
|
35EF000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
327F000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
3A2F000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
1315000
|
unkown
|
page execute and write copy
|
||
|
1864000
|
heap
|
page read and write
|
||
|
4BA1000
|
heap
|
page read and write
|
||
|
1090000
|
heap
|
page read and write
|
||
|
37BE000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
50E0000
|
heap
|
page read and write
|
||
|
3A3E000
|
stack
|
page read and write
|
||
|
12B0000
|
heap
|
page read and write
|
||
|
407000
|
unkown
|
page write copy
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
920000
|
heap
|
page read and write
|
||
|
13F0000
|
heap
|
page read and write
|
||
|
40F000
|
unkown
|
page read and write
|
||
|
318E000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
77DE000
|
stack
|
page read and write
|
||
|
5010000
|
direct allocation
|
page read and write
|
||
|
1240000
|
direct allocation
|
page read and write
|
||
|
317E000
|
stack
|
page read and write
|
||
|
43FF000
|
stack
|
page read and write
|
||
|
4F80000
|
direct allocation
|
page execute and read and write
|
||
|
306E000
|
stack
|
page read and write
|
||
|
3F2F000
|
stack
|
page read and write
|
||
|
7324000
|
heap
|
page read and write
|
||
|
106C000
|
unkown
|
page read and write
|
||
|
BC0000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
406F000
|
stack
|
page read and write
|
||
|
40AD000
|
stack
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
725F000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
769F000
|
stack
|
page read and write
|
||
|
6FC000
|
stack
|
page read and write
|
||
|
4AE0000
|
trusted library allocation
|
page read and write
|
||
|
1165000
|
unkown
|
page execute and read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
409E000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
38EF000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
42DF000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
789F000
|
stack
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
2D3F000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
57A1000
|
direct allocation
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4CA0000
|
direct allocation
|
page execute and read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
458E000
|
stack
|
page read and write
|
||
|
56D0000
|
direct allocation
|
page execute and read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
2F2E000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
996000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
418F000
|
stack
|
page read and write
|
||
|
6B6000
|
unkown
|
page execute and write copy
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
EB0000
|
direct allocation
|
page read and write
|
||
|
711F000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4A8E000
|
stack
|
page read and write
|
||
|
365F000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
3C8F000
|
stack
|
page read and write
|
||
|
280000
|
unkown
|
page read and write
|
||
|
8FE000
|
stack
|
page read and write
|
||
|
14AA000
|
unkown
|
page execute and read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
2EDF000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
D31000
|
unkown
|
page execute and write copy
|
||
|
4BA0000
|
direct allocation
|
page execute and read and write
|
||
|
7C3F000
|
stack
|
page read and write
|
||
|
CB8000
|
direct allocation
|
page read and write
|
||
|
38DF000
|
stack
|
page read and write
|
||
|
43EE000
|
stack
|
page read and write
|
||
|
4E3E000
|
stack
|
page read and write
|
||
|
EE0000
|
unkown
|
page readonly
|
||
|
4EF0000
|
direct allocation
|
page execute and read and write
|
||
|
EE1000
|
unkown
|
page execute and write copy
|
||
|
741E000
|
stack
|
page read and write
|
||
|
EB0000
|
direct allocation
|
page read and write
|
||
|
329F000
|
stack
|
page read and write
|
||
|
3A4E000
|
stack
|
page read and write
|
||
|
50B0000
|
direct allocation
|
page execute and read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
14A7000
|
unkown
|
page execute and write copy
|
||
|
56C0000
|
direct allocation
|
page execute and read and write
|
||
|
5170000
|
direct allocation
|
page read and write
|
||
|
74DF000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
37AF000
|
stack
|
page read and write
|
||
|
3A6E000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
376E000
|
stack
|
page read and write
|
||
|
4CC0000
|
direct allocation
|
page execute and read and write
|
||
|
844000
|
unkown
|
page execute and write copy
|
||
|
3CCE000
|
stack
|
page read and write
|
||
|
739F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
37EE000
|
stack
|
page read and write
|
||
|
1768000
|
heap
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
1046000
|
unkown
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
2C85000
|
direct allocation
|
page read and write
|
||
|
3DAE000
|
stack
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
3B4F000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
445E000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
42AE000
|
stack
|
page read and write
|
||
|
D3F000
|
heap
|
page read and write
|
||
|
84A000
|
unkown
|
page execute and read and write
|
||
|
DFF000
|
stack
|
page read and write
|
||
|
462F000
|
stack
|
page read and write
|
||
|
5140000
|
direct allocation
|
page execute and read and write
|
||
|
4A2E000
|
stack
|
page read and write
|
||
|
391E000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
78DF000
|
stack
|
page read and write
|
||
|
1074000
|
unkown
|
page execute and read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
3CAF000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
368E000
|
stack
|
page read and write
|
||
|
740000
|
heap
|
page read and write
|
||
|
2D9F000
|
stack
|
page read and write
|
||
|
490F000
|
stack
|
page read and write
|
||
|
1315000
|
unkown
|
page execute and read and write
|
||
|
4C6F000
|
stack
|
page read and write
|
||
|
2CA0000
|
heap
|
page read and write
|
||
|
390E000
|
stack
|
page read and write
|
||
|
2B2E000
|
stack
|
page read and write
|
||
|
106F000
|
unkown
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
4C40000
|
direct allocation
|
page execute and read and write
|
||
|
4B99000
|
heap
|
page read and write
|
||
|
715E000
|
stack
|
page read and write
|
||
|
D35000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
416E000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
453F000
|
stack
|
page read and write
|
||
|
1120000
|
heap
|
page read and write
|
||
|
4A6F000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
3FEF000
|
stack
|
page read and write
|
||
|
4CD0000
|
direct allocation
|
page execute and read and write
|
||
|
937000
|
heap
|
page read and write
|
||
|
106F000
|
unkown
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
CF0000
|
heap
|
page read and write
|
||
|
12D4000
|
heap
|
page read and write
|
||
|
EB7000
|
unkown
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
351F000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
323E000
|
stack
|
page read and write
|
||
|
4B6E000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
10FE000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
88E000
|
stack
|
page read and write
|
||
|
2ACE000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
EB7000
|
unkown
|
page write copy
|
||
|
3B8E000
|
stack
|
page read and write
|
||
|
739E000
|
stack
|
page read and write
|
||
|
5170000
|
direct allocation
|
page read and write
|
||
|
CFB000
|
heap
|
page read and write
|
||
|
14AB000
|
unkown
|
page execute and write copy
|
||
|
1134000
|
heap
|
page read and write
|
||
|
D20000
|
direct allocation
|
page execute and read and write
|
||
|
520E000
|
stack
|
page read and write
|
||
|
12F7000
|
unkown
|
page execute and write copy
|
||
|
45AE000
|
stack
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
4B60000
|
direct allocation
|
page execute and read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
32BE000
|
stack
|
page read and write
|
||
|
751F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
EBE000
|
stack
|
page read and write
|
||
|
39AF000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
4A74000
|
heap
|
page read and write
|
||
|
99C000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
5010000
|
direct allocation
|
page execute and read and write
|
||
|
1112000
|
unkown
|
page execute and read and write
|
||
|
32EE000
|
stack
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
D72000
|
heap
|
page read and write
|
||
|
2B18000
|
direct allocation
|
page read and write
|
||
|
304F000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
2E3F000
|
stack
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
33CF000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
4F90000
|
direct allocation
|
page execute and read and write
|
||
|
900000
|
heap
|
page read and write
|
||
|
524E000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4C50000
|
direct allocation
|
page execute and read and write
|
||
|
33AF000
|
stack
|
page read and write
|
||
|
EE0000
|
unkown
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
414000
|
unkown
|
page execute and read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
EB0000
|
direct allocation
|
page read and write
|
||
|
910000
|
direct allocation
|
page read and write
|
||
|
177C000
|
heap
|
page read and write
|
||
|
1307000
|
unkown
|
page execute and read and write
|
||
|
EE1000
|
unkown
|
page execute and read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
EB0000
|
direct allocation
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
4C20000
|
direct allocation
|
page execute and read and write
|
||
|
14A4000
|
unkown
|
page execute and write copy
|
||
|
94D000
|
heap
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
3290000
|
heap
|
page read and write
|
||
|
1785000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
9A8000
|
heap
|
page read and write
|
||
|
1046000
|
unkown
|
page execute and read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
125A000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4A4F000
|
stack
|
page read and write
|
||
|
EC0000
|
direct allocation
|
page read and write
|
||
|
502F000
|
stack
|
page read and write
|
||
|
1315000
|
unkown
|
page execute and read and write
|
||
|
12E1000
|
heap
|
page read and write
|
||
|
3D6F000
|
stack
|
page read and write
|
||
|
D31000
|
unkown
|
page execute and write copy
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
96E000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4EB0000
|
trusted library allocation
|
page read and write
|
||
|
41DE000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
2C2F000
|
stack
|
page read and write
|
||
|
149F000
|
unkown
|
page execute and write copy
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
392E000
|
stack
|
page read and write
|
||
|
4CAE000
|
stack
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
E6C000
|
stack
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
5630000
|
direct allocation
|
page execute and read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
12EF000
|
unkown
|
page execute and write copy
|
||
|
988000
|
heap
|
page read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
3F3E000
|
stack
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
56A0000
|
direct allocation
|
page execute and read and write
|
||
|
5615000
|
direct allocation
|
page read and write
|
||
|
12BA000
|
heap
|
page read and write
|
||
|
F5C000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
455F000
|
stack
|
page read and write
|
||
|
440F000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
43AF000
|
stack
|
page read and write
|
||
|
3A0F000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
755E000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4DE0000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
42CE000
|
stack
|
page read and write
|
||
|
342E000
|
stack
|
page read and write
|
||
|
7FFF000
|
stack
|
page read and write
|
||
|
12B5000
|
heap
|
page read and write
|
||
|
759E000
|
stack
|
page read and write
|
||
|
12EE000
|
unkown
|
page execute and read and write
|
||
|
50D0000
|
direct allocation
|
page execute and read and write
|
||
|
D1E000
|
stack
|
page read and write
|
||
|
4F40000
|
direct allocation
|
page execute and read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
7D7F000
|
stack
|
page read and write
|
||
|
EE1000
|
unkown
|
page execute and write copy
|
||
|
454F000
|
stack
|
page read and write
|
||
|
57BE000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
7AE0000
|
heap
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
29B000
|
stack
|
page read and write
|
||
|
4DC1000
|
direct allocation
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
1860000
|
heap
|
page read and write
|
||
|
31AE000
|
stack
|
page read and write
|
||
|
314F000
|
stack
|
page read and write
|
||
|
12C9000
|
heap
|
page read and write
|
||
|
4E50000
|
heap
|
page read and write
|
||
|
3C2F000
|
stack
|
page read and write
|
||
|
405F000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
41AE000
|
stack
|
page read and write
|
||
|
12F7000
|
unkown
|
page execute and write copy
|
||
|
73DE000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
38AE000
|
stack
|
page read and write
|
||
|
5720000
|
direct allocation
|
page execute and read and write
|
||
|
4C30000
|
direct allocation
|
page execute and read and write
|
||
|
14A7000
|
unkown
|
page execute and write copy
|
||
|
97D000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
3DCF000
|
stack
|
page read and write
|
||
|
47AE000
|
stack
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
3B6F000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
379F000
|
stack
|
page read and write
|
||
|
1785000
|
heap
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
910000
|
direct allocation
|
page read and write
|
||
|
4B50000
|
direct allocation
|
page execute and read and write
|
||
|
770000
|
heap
|
page read and write
|
||
|
761F000
|
stack
|
page read and write
|
||
|
1290000
|
heap
|
page read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
95D000
|
heap
|
page read and write
|
||
|
EC0000
|
direct allocation
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4D70000
|
direct allocation
|
page execute and read and write
|
||
|
39FF000
|
stack
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
EB7000
|
unkown
|
page write copy
|
||
|
EC0000
|
direct allocation
|
page read and write
|
||
|
41CE000
|
stack
|
page read and write
|
||
|
12CB000
|
heap
|
page read and write
|
||
|
1787000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
7C7E000
|
stack
|
page read and write
|
||
|
47BF000
|
stack
|
page read and write
|
||
|
12EE000
|
unkown
|
page execute and read and write
|
||
|
356E000
|
stack
|
page read and write
|
||
|
47EF000
|
stack
|
page read and write
|
||
|
5760000
|
direct allocation
|
page execute and read and write
|
||
|
EC4000
|
unkown
|
page execute and read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4DCD000
|
stack
|
page read and write
|
||
|
97C000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
3E0E000
|
stack
|
page read and write
|
||
|
5170000
|
direct allocation
|
page read and write
|
||
|
E3E000
|
stack
|
page read and write
|
||
|
57D0000
|
heap
|
page read and write
|
||
|
969000
|
heap
|
page read and write
|
||
|
84B000
|
unkown
|
page execute and write copy
|
||
|
5020000
|
direct allocation
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
951000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1316000
|
unkown
|
page execute and write copy
|
||
|
1134000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
AFF000
|
stack
|
page read and write
|
||
|
3DFD000
|
stack
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
765E000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
12FE000
|
unkown
|
page execute and read and write
|
||
|
5130000
|
direct allocation
|
page execute and read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
4BC0000
|
direct allocation
|
page execute and read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
90E000
|
heap
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
4B2F000
|
stack
|
page read and write
|
||
|
431E000
|
stack
|
page read and write
|
||
|
12F7000
|
unkown
|
page execute and write copy
|
||
|
D68000
|
heap
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
3CBE000
|
stack
|
page read and write
|
||
|
419F000
|
stack
|
page read and write
|
||
|
CB5000
|
direct allocation
|
page read and write
|
||
|
32AF000
|
stack
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
176A000
|
heap
|
page read and write
|
||
|
12F7000
|
unkown
|
page execute and write copy
|
||
|
2DDE000
|
stack
|
page read and write
|
||
|
480E000
|
stack
|
page read and write
|
||
|
328F000
|
stack
|
page read and write
|
||
|
4F60000
|
direct allocation
|
page execute and read and write
|
||
|
138B000
|
stack
|
page read and write
|
||
|
7DBE000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
367E000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
32A0000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
5100000
|
direct allocation
|
page execute and read and write
|
||
|
77D000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
1130000
|
heap
|
page read and write
|
||
|
4BE0000
|
direct allocation
|
page execute and read and write
|
||
|
5770000
|
direct allocation
|
page execute and read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
316F000
|
stack
|
page read and write
|
||
|
11F6000
|
unkown
|
page execute and read and write
|
||
|
50A0000
|
direct allocation
|
page execute and read and write
|
||
|
4F50000
|
direct allocation
|
page execute and read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
5170000
|
direct allocation
|
page read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
466E000
|
stack
|
page read and write
|
||
|
4FF0000
|
direct allocation
|
page execute and read and write
|
||
|
12F4000
|
unkown
|
page execute and write copy
|
||
|
EC0000
|
direct allocation
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
1067000
|
unkown
|
page write copy
|
||
|
5181000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
729E000
|
stack
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
114E000
|
unkown
|
page execute and read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
CE0000
|
heap
|
page read and write
|
||
|
EB0000
|
direct allocation
|
page read and write
|
||
|
2B15000
|
direct allocation
|
page read and write
|
||
|
3B2E000
|
stack
|
page read and write
|
||
|
2A8E000
|
stack
|
page read and write
|
||
|
1165000
|
unkown
|
page execute and write copy
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
8BE000
|
stack
|
page read and write
|
||
|
4D30000
|
direct allocation
|
page execute and read and write
|
||
|
1240000
|
direct allocation
|
page read and write
|
||
|
4CA1000
|
direct allocation
|
page read and write
|
||
|
69E000
|
unkown
|
page execute and read and write
|
||
|
4FD0000
|
trusted library allocation
|
page read and write
|
||
|
4C40000
|
direct allocation
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
4D50000
|
direct allocation
|
page execute and read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
E5B000
|
stack
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
176D000
|
heap
|
page read and write
|
||
|
12AA000
|
heap
|
page read and write
|
||
|
D31000
|
unkown
|
page execute and read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
981000
|
heap
|
page read and write
|
||
|
4B40000
|
direct allocation
|
page execute and read and write
|
||
|
910000
|
direct allocation
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
3A1F000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
ED7000
|
heap
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
305E000
|
stack
|
page read and write
|
||
|
EB7000
|
unkown
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
99E000
|
heap
|
page read and write
|
||
|
386F000
|
stack
|
page read and write
|
||
|
32A7000
|
heap
|
page read and write
|
||
|
402E000
|
stack
|
page read and write
|
||
|
378F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
281000
|
unkown
|
page execute and write copy
|
||
|
1864000
|
heap
|
page read and write
|
||
|
476F000
|
stack
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
2B37000
|
heap
|
page read and write
|
||
|
3BAE000
|
stack
|
page read and write
|
||
|
12EF000
|
unkown
|
page execute and write copy
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
6A7000
|
unkown
|
page execute and read and write
|
||
|
41BE000
|
stack
|
page read and write
|
||
|
34EC000
|
stack
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
280000
|
unkown
|
page readonly
|
||
|
12DF000
|
heap
|
page read and write
|
||
|
171B000
|
heap
|
page read and write
|
||
|
3EAF000
|
stack
|
page read and write
|
||
|
482E000
|
stack
|
page read and write
|
||
|
56F0000
|
direct allocation
|
page execute and read and write
|
||
|
303F000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
178F000
|
heap
|
page read and write
|
||
|
6DF3000
|
heap
|
page read and write
|
||
|
ED0000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
38CF000
|
stack
|
page read and write
|
||
|
467F000
|
stack
|
page read and write
|
||
|
516F000
|
stack
|
page read and write
|
||
|
494E000
|
stack
|
page read and write
|
||
|
E7C000
|
stack
|
page read and write
|
||
|
46B0000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
5188000
|
heap
|
page read and write
|
||
|
79DF000
|
stack
|
page read and write
|
||
|
97F000
|
heap
|
page read and write
|
||
|
408E000
|
stack
|
page read and write
|
||
|
432E000
|
stack
|
page read and write
|
||
|
D43000
|
heap
|
page read and write
|
||
|
5070000
|
direct allocation
|
page execute and read and write
|
||
|
364F000
|
stack
|
page read and write
|
||
|
751E000
|
stack
|
page read and write
|
||
|
4FC0000
|
direct allocation
|
page execute and read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
5620000
|
direct allocation
|
page read and write
|
||
|
1710000
|
heap
|
page read and write
|
||
|
441F000
|
stack
|
page read and write
|
||
|
957000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1067000
|
unkown
|
page write copy
|
||
|
1240000
|
direct allocation
|
page read and write
|
||
|
12F4000
|
unkown
|
page execute and write copy
|
||
|
32CE000
|
stack
|
page read and write
|
||
|
12FA000
|
unkown
|
page execute and read and write
|
||
|
87F000
|
stack
|
page read and write
|
||
|
EB0000
|
direct allocation
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
4FD0000
|
direct allocation
|
page execute and read and write
|
||
|
5050000
|
direct allocation
|
page execute and read and write
|
||
|
3DDF000
|
stack
|
page read and write
|
||
|
725F000
|
stack
|
page read and write
|
||
|
1067000
|
unkown
|
page read and write
|
||
|
662000
|
unkown
|
page execute and read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
452E000
|
stack
|
page read and write
|
||
|
4B20000
|
direct allocation
|
page read and write
|
||
|
D30000
|
unkown
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
5690000
|
direct allocation
|
page execute and read and write
|
||
|
5030000
|
direct allocation
|
page execute and read and write
|
||
|
446E000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
5170000
|
direct allocation
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
6E0000
|
heap
|
page read and write
|
||
|
1157000
|
unkown
|
page execute and read and write
|
||
|
4A76000
|
heap
|
page read and write
|
||
|
730000
|
heap
|
page read and write
|
||
|
4BB0000
|
direct allocation
|
page execute and read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
16FC000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
44EF000
|
stack
|
page read and write
|
||
|
CD7000
|
heap
|
page read and write
|
||
|
12DD000
|
heap
|
page read and write
|
||
|
D48000
|
heap
|
page read and write
|
||
|
38BF000
|
stack
|
page read and write
|
||
|
3CB000
|
stack
|
page read and write
|
||
|
41EE000
|
stack
|
page read and write
|
||
|
5610000
|
direct allocation
|
page read and write
|
||
|
2C3F000
|
stack
|
page read and write
|
||
|
350F000
|
stack
|
page read and write
|
||
|
D68000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4D40000
|
direct allocation
|
page execute and read and write
|
||
|
EC4000
|
unkown
|
page execute and read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
48AE000
|
stack
|
page read and write
|
||
|
4D10000
|
direct allocation
|
page execute and read and write
|
||
|
6B5000
|
unkown
|
page execute and write copy
|
||
|
957000
|
heap
|
page read and write
|
||
|
4D80000
|
direct allocation
|
page execute and read and write
|
||
|
3AEF000
|
stack
|
page read and write
|
||
|
185D000
|
stack
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
EE0000
|
unkown
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
1112000
|
unkown
|
page execute and read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
74DF000
|
stack
|
page read and write
|
||
|
492F000
|
stack
|
page read and write
|
||
|
4D9E000
|
stack
|
page read and write
|
||
|
4CB0000
|
direct allocation
|
page execute and read and write
|
||
|
AFC000
|
stack
|
page read and write
|
||
|
468F000
|
stack
|
page read and write
|
||
|
14A4000
|
unkown
|
page execute and write copy
|
||
|
77E9000
|
heap
|
page read and write
|
||
|
7BB000
|
stack
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
50C0000
|
direct allocation
|
page execute and read and write
|
||
|
15AF000
|
stack
|
page read and write
|
||
|
5020000
|
direct allocation
|
page execute and read and write
|
||
|
51A1000
|
direct allocation
|
page read and write
|
||
|
EC0000
|
direct allocation
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
3F5E000
|
stack
|
page read and write
|
||
|
1315000
|
unkown
|
page execute and write copy
|
||
|
734000
|
heap
|
page read and write
|
||
|
769E000
|
stack
|
page read and write
|
||
|
40C000
|
unkown
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
3B5F000
|
stack
|
page read and write
|
||
|
95B000
|
heap
|
page read and write
|
||
|
3C7F000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
3DEF000
|
stack
|
page read and write
|
||
|
5170000
|
direct allocation
|
page read and write
|
||
|
4C00000
|
direct allocation
|
page execute and read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
319E000
|
stack
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
715E000
|
stack
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
3F1F000
|
stack
|
page read and write
|
||
|
301F000
|
stack
|
page read and write
|
||
|
732A000
|
heap
|
page read and write
|
||
|
EB2000
|
unkown
|
page execute and read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
2F3F000
|
stack
|
page read and write
|
||
|
1165000
|
unkown
|
page execute and read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
B20000
|
heap
|
page read and write
|
||
|
C5C000
|
stack
|
page read and write
|
||
|
D5E000
|
heap
|
page read and write
|
||
|
3F6E000
|
stack
|
page read and write
|
||
|
175D000
|
heap
|
page read and write
|
||
|
352F000
|
stack
|
page read and write
|
||
|
4B8F000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
50E0000
|
direct allocation
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
847000
|
unkown
|
page execute and write copy
|
||
|
734000
|
heap
|
page read and write
|
||
|
149E000
|
unkown
|
page execute and read and write
|
||
|
315F000
|
stack
|
page read and write
|
||
|
12A4000
|
heap
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
5640000
|
direct allocation
|
page execute and read and write
|
||
|
362E000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
302F000
|
stack
|
page read and write
|
||
|
506E000
|
stack
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
596000
|
unkown
|
page execute and read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
363F000
|
stack
|
page read and write
|
||
|
987000
|
heap
|
page read and write
|
||
|
5060000
|
direct allocation
|
page execute and read and write
|
||
|
4EEF000
|
stack
|
page read and write
|
||
|
732D000
|
heap
|
page read and write
|
||
|
14A7000
|
unkown
|
page execute and write copy
|
||
|
4D20000
|
direct allocation
|
page execute and read and write
|
||
|
33EF000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
12A0000
|
heap
|
page read and write
|
||
|
5071000
|
direct allocation
|
page read and write
|
||
|
5670000
|
direct allocation
|
page execute and read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
967000
|
heap
|
page read and write
|
||
|
37CE000
|
stack
|
page read and write
|
||
|
7B3E000
|
stack
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
83E000
|
unkown
|
page execute and read and write
|
||
|
506E000
|
stack
|
page read and write
|
||
|
78DE000
|
stack
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
5650000
|
direct allocation
|
page execute and read and write
|
||
|
340E000
|
stack
|
page read and write
|
||
|
313F000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
1765000
|
heap
|
page read and write
|
||
|
2B30000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
EBF000
|
unkown
|
page read and write
|
||
|
496E000
|
stack
|
page read and write
|
||
|
72EF000
|
heap
|
page read and write
|
||
|
3A5E000
|
stack
|
page read and write
|
||
|
1753000
|
heap
|
page read and write
|
||
|
3CEE000
|
stack
|
page read and write
|
||
|
281000
|
unkown
|
page execute and read and write
|
||
|
5030000
|
direct allocation
|
page execute and read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
46A1000
|
heap
|
page read and write
|
||
|
32DE000
|
stack
|
page read and write
|
||
|
3E1E000
|
stack
|
page read and write
|
||
|
12FB000
|
unkown
|
page execute and write copy
|
||
|
1250000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
B90000
|
heap
|
page read and write
|
||
|
CB0000
|
direct allocation
|
page read and write
|
||
|
12D0000
|
heap
|
page read and write
|
||
|
36AE000
|
stack
|
page read and write
|
||
|
2C9F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
9B0000
|
heap
|
page read and write
|
||
|
46EE000
|
stack
|
page read and write
|
||
|
910000
|
direct allocation
|
page read and write
|
||
|
4FA0000
|
direct allocation
|
page execute and read and write
|
||
|
417F000
|
stack
|
page read and write
|
||
|
5184000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
1240000
|
direct allocation
|
page read and write
|
||
|
97E000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
402000
|
unkown
|
page execute and read and write
|
||
|
4C10000
|
direct allocation
|
page execute and read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
5740000
|
direct allocation
|
page execute and read and write
|
||
|
1A3F000
|
stack
|
page read and write
|
||
|
73DE000
|
stack
|
page read and write
|
||
|
2F4F000
|
stack
|
page read and write
|
||
|
5000000
|
direct allocation
|
page execute and read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
EE0000
|
unkown
|
page readonly
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
3B3F000
|
stack
|
page read and write
|
||
|
D2C000
|
heap
|
page read and write
|
||
|
2CA7000
|
heap
|
page read and write
|
||
|
125E000
|
heap
|
page read and write
|
||
|
4B90000
|
heap
|
page read and write
|
||
|
4CE0000
|
direct allocation
|
page execute and read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
369E000
|
stack
|
page read and write
|
||
|
4F30000
|
direct allocation
|
page execute and read and write
|
||
|
5040000
|
direct allocation
|
page execute and read and write
|
||
|
4B20000
|
direct allocation
|
page execute and read and write
|
||
|
847000
|
unkown
|
page execute and write copy
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
51B0000
|
heap
|
page read and write
|
||
|
149F000
|
unkown
|
page execute and write copy
|
||
|
1864000
|
heap
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
407E000
|
stack
|
page read and write
|
||
|
5730000
|
direct allocation
|
page execute and read and write
|
||
|
910000
|
direct allocation
|
page read and write
|
||
|
1307000
|
unkown
|
page execute and read and write
|
||
|
12F4000
|
unkown
|
page execute and write copy
|
||
|
2A9F000
|
stack
|
page read and write
|
||
|
1240000
|
direct allocation
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
403F000
|
stack
|
page read and write
|
||
|
4A71000
|
heap
|
page read and write
|
||
|
CD0000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
600000
|
heap
|
page read and write
|
||
|
EAE000
|
stack
|
page read and write
|
||
|
33FE000
|
stack
|
page read and write
|
||
|
D4A000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
1316000
|
unkown
|
page execute and write copy
|
||
|
3B7E000
|
stack
|
page read and write
|
||
|
92E000
|
heap
|
page read and write
|
||
|
EBF000
|
unkown
|
page read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
47CF000
|
stack
|
page read and write
|
||
|
55C0000
|
trusted library allocation
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
83F000
|
unkown
|
page execute and write copy
|
||
|
12FB000
|
unkown
|
page execute and write copy
|
||
|
5700000
|
direct allocation
|
page execute and read and write
|
||
|
47C1000
|
heap
|
page read and write
|
||
|
528E000
|
stack
|
page read and write
|
||
|
1134000
|
heap
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
990000
|
heap
|
page read and write
|
||
|
14A7000
|
unkown
|
page execute and write copy
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
56E0000
|
direct allocation
|
page execute and read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
2E4F000
|
stack
|
page read and write
|
||
|
123F000
|
stack
|
page read and write
|
||
|
5660000
|
direct allocation
|
page execute and read and write
|
||
|
46BE000
|
stack
|
page read and write
|
||
|
72E9000
|
heap
|
page read and write
|
||
|
3CDE000
|
stack
|
page read and write
|
||
|
2B0E000
|
stack
|
page read and write
|
||
|
42EF000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4DD0000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
5181000
|
heap
|
page read and write
|
||
|
774000
|
heap
|
page read and write
|
||
|
12C2000
|
unkown
|
page execute and read and write
|
||
|
1864000
|
heap
|
page read and write
|
||
|
B8E000
|
stack
|
page read and write
|
||
|
353E000
|
stack
|
page read and write
|
||
|
444E000
|
stack
|
page read and write
|
||
|
2C88000
|
direct allocation
|
page read and write
|
||
|
3F0F000
|
stack
|
page read and write
|
||
|
734000
|
heap
|
page read and write
|
||
|
4F00000
|
direct allocation
|
page execute and read and write
|
||
|
D30000
|
heap
|
page read and write
|
||
|
129B000
|
heap
|
page read and write
|
||
|
47C7000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
5710000
|
direct allocation
|
page execute and read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
2EEF000
|
stack
|
page read and write
|
||
|
4B91000
|
heap
|
page read and write
|
||
|
469F000
|
stack
|
page read and write
|
There are 1146 hidden memdumps, click here to show them.