f316c85b920176e192357ff4b735f6d1b99fd7af2f23e24b80e3aef4fd2522ba

Analysis

max time kernel
68s
max time network
72s
platform
windows10_x64
resource
win10
submitted
10-07-2020 05:31

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

SWIT BAN.EXE
Size

1.3MB
MD5

1aa318b5c4ad4d54c98e55d54cda70b0
SHA1

b5bc6828d418389f09c6a0543545075f2cd1b0ae
SHA256

f316c85b920176e192357ff4b735f6d1b99fd7af2f23e24b80e3aef4fd2522ba
SHA512

60c2523f341df94bd4be1a38c6d0c3c49d59f3730da7ba3d0d7c1cdb02944f460e24176d06f894b232cace9e61b0a879d8a9fa9f0d237e3ea6475f71c4ed1fd0

Score

8^/10

Malware Config

Signatures

Suspicious behavior: MapViewOfSection 1 IoCs

pid	Process
3820	SWIT BAN.EXE

Suspicious use of SetThreadContext 1 IoCs

description	pid	Process	procid_target
PID 3820 set thread context of 3876	3820	SWIT BAN.EXE	67

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	3876	SWIT BAN.EXE

UPX packed file 3 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/3876-0-0x0000000000400000-0x0000000000567000-memory.dmp	upx
behavioral2/memory/3876-2-0x0000000000400000-0x0000000000567000-memory.dmp	upx
behavioral2/memory/3876-3-0x0000000000400000-0x0000000000567000-memory.dmp	upx

Suspicious behavior: EnumeratesProcesses 2 IoCs

pid	Process
3820	SWIT BAN.EXE
3820	SWIT BAN.EXE

Suspicious use of WriteProcessMemory 9 IoCs

description	pid	Process	procid_target
PID 3820 wrote to memory of 3876	3820	SWIT BAN.EXE	67
PID 3820 wrote to memory of 3876	3820	SWIT BAN.EXE	67
PID 3820 wrote to memory of 3876	3820	SWIT BAN.EXE	67
PID 3876 wrote to memory of 3504	3876	SWIT BAN.EXE	69
PID 3876 wrote to memory of 3504	3876	SWIT BAN.EXE	69
PID 3876 wrote to memory of 3504	3876	SWIT BAN.EXE	69
PID 3504 wrote to memory of 664	3504	cmd.exe	71
PID 3504 wrote to memory of 664	3504	cmd.exe	71
PID 3504 wrote to memory of 664	3504	cmd.exe	71

C:\Users\Admin\AppData\Local\Temp\SWIT BAN.EXE
"C:\Users\Admin\AppData\Local\Temp\SWIT BAN.EXE"
1⤵
- Suspicious behavior: MapViewOfSection
- Suspicious use of SetThreadContext
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of WriteProcessMemory
PID:3820
- C:\Users\Admin\AppData\Local\Temp\SWIT BAN.EXE
  "C:\Users\Admin\AppData\Local\Temp\SWIT BAN.EXE"
  2⤵
  - Suspicious use of AdjustPrivilegeToken
  - Suspicious use of WriteProcessMemory
  PID:3876
- - C:\Windows\SysWOW64\cmd.exe
    "cmd" /c start /b powershell Start-Sleep -Seconds 2; Remove-Item -path 'C:\Users\Admin\AppData\Local\Temp\SWIT BAN.EXE' & exit
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3504
  - - C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
      powershell Start-Sleep -Seconds 2; Remove-Item -path 'C:\Users\Admin\AppData\Local\Temp\SWIT BAN.EXE'
      4⤵
      PID:664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3876-0-0x0000000000400000-0x0000000000567000-memory.dmp

Filesize
1.4MB

Download
memory/3876-2-0x0000000000400000-0x0000000000567000-memory.dmp

Filesize
1.4MB

Download
memory/3876-3-0x0000000000400000-0x0000000000567000-memory.dmp

Filesize
1.4MB

Download
memory/3876-4-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-5-0x00000000007F2000-0x00000000007F3000-memory.dmp

Filesize
4KB

Download
memory/3876-6-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-7-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-8-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-9-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-10-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-11-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-12-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-13-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-14-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-15-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-16-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-17-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-18-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-19-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-20-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-21-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-22-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-23-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-24-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-25-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-26-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-27-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-28-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-29-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-30-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-31-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-32-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-33-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-34-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-36-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-35-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-37-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-38-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-39-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-40-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-42-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-41-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-43-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-44-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-46-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-45-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-47-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-48-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-49-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-50-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-51-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-52-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-53-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-54-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-55-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-56-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-57-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-58-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-59-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-61-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-60-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-62-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-63-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-64-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-65-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-66-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-68-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-67-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-69-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-70-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-71-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-72-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-73-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-74-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-75-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-76-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-77-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-78-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-79-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-81-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-80-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-82-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-83-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-84-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-85-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-86-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-87-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-88-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-89-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-90-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-91-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-92-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-93-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-94-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-95-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-96-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-97-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-98-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-99-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-100-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-101-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-102-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-103-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-104-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-105-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-106-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-107-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-108-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-109-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-110-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-111-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-113-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-112-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-115-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-114-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-116-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-117-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-118-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-119-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-120-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-121-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-122-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-123-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-124-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-125-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-126-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-127-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-128-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-129-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-130-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-131-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-132-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-133-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-134-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-135-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-136-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-137-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-138-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-139-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-140-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-141-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-142-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-143-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-144-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-145-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-146-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-147-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-148-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-149-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-150-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-151-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-152-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-153-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-154-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-155-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-156-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-157-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-158-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-159-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-160-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-161-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-162-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-163-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-164-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-165-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-166-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-167-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-168-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-169-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-170-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-171-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-172-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-173-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-174-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-175-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-176-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-177-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-178-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-179-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-180-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-181-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-182-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-183-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-184-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-185-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-186-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-187-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-188-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-189-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-190-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-191-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-192-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-194-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-193-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-195-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-196-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-197-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-198-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-199-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-200-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-201-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-202-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-203-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-204-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-205-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-206-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-207-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-208-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-209-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-210-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-211-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-212-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-214-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-213-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-215-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-216-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-217-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-218-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-219-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-220-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-221-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-222-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-223-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-224-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-225-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-226-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-227-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-228-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-229-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-230-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-231-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-233-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-232-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-234-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-235-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-236-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-237-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-238-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-239-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-240-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-241-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-242-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-243-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-244-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-245-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-246-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-247-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-248-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-249-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-250-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-251-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-253-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-252-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-254-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-255-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-256-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-257-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-258-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download
memory/3876-259-0x00000000023D0000-0x0000000002478000-memory.dmp

Filesize
672KB

Download