e1cdac7f4cf342ffde7d1f1fd9ea4788166bc4f9bfe3706ba5ab71af38682f33

Analysis

max time kernel
596s
max time network
636s
platform
windows7_x64
resource
win7v20210410
submitted
20-06-2021 23:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ProstoLauncher.exe
Size

157KB
MD5

7410df6db7dd9dfc0c4103efa8d13fc9
SHA1

ea2f19e981509d96ec2c775af8a1d158e79bfca4
SHA256

e1cdac7f4cf342ffde7d1f1fd9ea4788166bc4f9bfe3706ba5ab71af38682f33
SHA512

841809c71e617f90538893652174960efa67662b5d72d6d33bf131804140a2c57b51be2b25f865d33410cc419715a7d6a597ad1e16b05c85a44a447d9642191a

Score

8^/10

Malware Config

Signatures

Downloads MZ/PE file
Executes dropped EXE 1 IoCs

Processes:

javaw.exe

pid process

1624 javaw.exe

pid	process
1624	javaw.exe

Loads dropped DLL 13 IoCs

Processes:

ProstoLauncher.exejavaw.exe

pid	process
1104	ProstoLauncher.exe
1104	ProstoLauncher.exe
1104	ProstoLauncher.exe
872
872
1624	javaw.exe
1624	javaw.exe
1624	javaw.exe
1624	javaw.exe
1624	javaw.exe
1624	javaw.exe
1624	javaw.exe
1624	javaw.exe

Drops desktop.ini file(s) 1 IoCs

Processes:

ProstoLauncher.exe

description ioc process

File created C:\Users\Admin\.prostocraft\client\prostocraft\assets\minecraft\font\desktop.ini ProstoLauncher.exe
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

description	ioc	process
File created	C:\Users\Admin\.prostocraft\client\prostocraft\assets\minecraft\font\desktop.ini	ProstoLauncher.exe

Modifies system certificate store 2 TTPs 2 IoCs

evasion spyware trojan

Install Root Certificate

T1130

Modify Registry

T1112

Processes:

ProstoLauncher.exe

description	ioc	process
Key created	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DAC9024F54D8F6DF94935FB1732638CA6AD77C13	ProstoLauncher.exe
Set value (data)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DAC9024F54D8F6DF94935FB1732638CA6AD77C13\Blob = 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	ProstoLauncher.exe

Suspicious use of WriteProcessMemory 3 IoCs

Processes:

ProstoLauncher.exe

description	pid	process	target process
PID 1104 wrote to memory of 1624	1104	ProstoLauncher.exe	javaw.exe
PID 1104 wrote to memory of 1624	1104	ProstoLauncher.exe	javaw.exe
PID 1104 wrote to memory of 1624	1104	ProstoLauncher.exe	javaw.exe

C:\Users\Admin\AppData\Local\Temp\ProstoLauncher.exe
"C:\Users\Admin\AppData\Local\Temp\ProstoLauncher.exe"
1⤵
- Loads dropped DLL
- Drops desktop.ini file(s)
- Modifies system certificate store
- Suspicious use of WriteProcessMemory
PID:1104

C:\Users\Admin\.prostocraft\jre_launcher\bin\javaw.exe
"C:\Users\Admin\.prostocraft\jre_launcher\bin\javaw.exe" -Xmx256M -XX:+DisableAttachMechanism -DdisableOldUpdateSystem=true -jar "C:\Users\Admin\.prostocraft\launcher.jar"
2⤵
- Executes dropped EXE
- Loads dropped DLL
PID:1624

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

T1130

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\.prostocraft\jre_launcher\bin\java.dll
MD5
3f31721d9d07e16703822163852ad595

SHA1
eb4fbcaa5a15aa5809c32abec87d9ed6b0d1959b

SHA256
f8620213358c4e63e8c04e095db383f8f39170a9360dd33dbd600ea750a00efc

SHA512
57fda13b745a0b91cf7bcf171f8de7a3537c45d16fbe59c4659502ba69efc6aec786edb0839195c240ca4dc1407138a92e8969410c59e88b0eaf77b4820f2199

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\javaw.exe
MD5
a7e2be2458fc570315febd27f44bf01e

SHA1
2276d27477ea32a5cf6cbf37bd73b961c2ca791a

SHA256
f1092d1203289bc6c0f05982d3ccd741075eedcd1d3022affb735b4eb0b62b19

SHA512
96f8b285748951679083528f164f3e713c16fb10fe4342674287d963340313577f4cd85e5db6f06037e595492133b9d71ef420aa70fa67786b5b184b502d181a

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\management.dll
MD5
104c87698afab216ba46a12d3249fdd2

SHA1
f5866a5abe8246261d304a99e88a049a9f733c6f

SHA256
334002d1fd15a0bc3b364da760c21f5b37e7577843fe741483b007d750e47037

SHA512
6429a5ecc59c7e6e8c43f566873f76d226e1228d75ab8eb3f00f44dcc0e0e9fe2bf79216138381b2f62b8256ec08e96b74ca145a76e1a534e53f681bb3cdf11f

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\msvcr100.dll
MD5
366fd6f3a451351b5df2d7c4ecf4c73a

SHA1
50db750522b9630757f91b53df377fd4ed4e2d66

SHA256
ae3cb6c6afba9a4aa5c85f66023c35338ca579b30326dd02918f9d55259503d5

SHA512
2de764772b68a85204b7435c87e9409d753c2196cf5b2f46e7796c99a33943e167f62a92e8753eaa184cd81fb14361e83228eb1b474e0c3349ed387ec93e6130

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\net.dll
MD5
cb8432a2d628e71cbc64cdf482acebc9

SHA1
3a4e39e7f7fbb4035e7dc84647daec8df1b0c5a0

SHA256
fa86cfe0062b72f3ce803fde6132b8ab2f976a0bf988398e748c376bba178af0

SHA512
72173b3d64cc529bbbdd17f56bd08648c732158ed11ad685d01fe5e306900046e562e1c5e187c8c586b6d481401717f2bb3d8b4f7d153fc035b2e5d67ef77e21

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\nio.dll
MD5
087ebc333bed4c5098bdc791bb3268b1

SHA1
bf05182a4df4d51b1b1128f87874d997c1cf8be0

SHA256
765a2f4c750b53627f0549641cb998e01ccfa56c40e9d847825d7982e5a0318b

SHA512
7ee2d1c095afb12d638069bf6ecac59f79c48d7e06f428bd52fb8c793ddaa9919a99dd53e8c2c495bc372641875f132ccc3e3808e298f910793a789bc829acc6

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\server\jvm.dll
MD5
5008d1e765a674700b11cd8f2080afa0

SHA1
03bc819591f2c9bbc640f74f73d0bb679b232e70

SHA256
2337c9c4ab16d8e78dc54f7cde3353e75a18a286283a650d5dd318a2cdcc481a

SHA512
34ab0c1153e692fdc9b5e46771d3dd9daf1bacb751c70ae24b9b29426badf1e908202f12d8028b2810596b85b67972666a57c3a710dba3969e8eb6201986c5fa

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\verify.dll
MD5
e2e4d70319b2c6f1d0f3518dcdec41f9

SHA1
c06ad7b35aab3d0e7517e8da6ec771b86864822a

SHA256
2d05c3f8ae307ffff9904524af3a2f30b31f973fa68d9ac3dc76f1efbdabe9fd

SHA512
53ec25c59d1f686fb9473b3b3cc84ed2d20979f792c36adbb6228579d23a38a2fa1d5186fcbb86aa0567651894eb2ed51f5165d59fab8f6e3f354d137ef06cdd

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\bin\zip.dll
MD5
607e3117753f1be1d8c6555d8cb7fbd8

SHA1
816e6dc9f77b7f04621863e3d8da1fe804822e9c

SHA256
89e2a52601cbaaf90f56ca486c05ad38afeb127cf6a039039dcb800f8d9ba5f9

SHA512
02272fbbebe3cda6c29fce210561df0001155efba14d28b1b00872ed41b96579eea5676c681a97c0fece001cb791f8ebe4e10af7f4092817ab880cca83a66abc

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\amd64\jvm.cfg
MD5
c60e77ff5f3887c743971e73e6f0e0b1

SHA1
9b0cfd38ec5b7bd5bd1c364dee2e1b452a063c02

SHA256
23f728cc2bf14e62d454190ea0139f159031b5bd9c3f141ca9237c4c5c96ec1d

SHA512
07aca3de1a03a3b64b691fd41e35e6596760baf24c4f24e86fca87d2acf3a4814b17cd9751adc2dcd0689848f3d582fb3ee01d413e3a61d1d98397d72fe545e9

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\currency.data
MD5
06cbdc01d247d7b365c804c4e9aaefad

SHA1
183cb72e7bf7118d870e549e9ca1fc096a2e3107

SHA256
183cea6ec937c92c47f2af345fda468cb19c6126dbb1a35b70dd47623efabe2b

SHA512
78a768406649b73457796f19f347c407c867c630be77d79997e25ca852e3987c0645fb5affecaaae458b1d6f9dbc6e359f505760652a898d6a1f515034a004c2

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\ext\meta-index
MD5
c13d39595f3ab17500d6963b323558a5

SHA1
65e8806bdc09e1433e0c9c4ccbce759a3db0df98

SHA256
f3c5b6ec18f23aabcb3c33ae6972c5f65fc3220196e4a3081e25341ce530cf64

SHA512
9e5821660a85337ad94a7d8dd488ca400e58046af7ab0785080b257c35d22462304b59d157579c3d79315a9d51bad3970988a8e45f34d8d741265f6e3ff202d1

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\ext\nashorn.jar
MD5
1f2e8a9dbc115d0e0ad1c4b714568d51

SHA1
4c92ecdb01034248f400f8daee79c0a3ba3d0d9e

SHA256
7bb963303fac0727f6379826e63669ce81acccffbae08cf9c53536d545d28dcc

SHA512
557b4a158c2fbbfde7cd9bb38c58da2ae941f8e5d2a19bb30ae85ee727583ef9f3e49be2bbfd448392e3d1f1dd6bbd559630ae350b92930ab79392975c97a058

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\ext\openjsse.jar
MD5
06d227469855967edac6763909785dba

SHA1
cc9578a57ec16fc4091efe5d7be7ca2048617f68

SHA256
04bacac471ca7d29dcdd06013f5d48eb0e30adfacbc4cd192f7008f6d75a8864

SHA512
3c52b46f28955e85b5e45db8213fd1adb1b320da9e809daf1ff8f8204c2c592cbe5cec1b98133f2d9543dccd407658fee77cf33722e3cf28beeab3a9a903e3ff

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\jfr.jar
MD5
4d48c2627bdd719de7d8dcda91a9385e

SHA1
f72a1189bfa1310afb4799fd343234e962ce4453

SHA256
46c367ff26ca9bf9e19a7e6f26d68ca4cbb09172ecd21f673fc9456a171a6758

SHA512
ae2ccb4a89def734f27d88ac439cceeffabe388635d4b386e42483617b9c4f65125b7c2cc7124063e2abddc3624536535d3ecce8fff07a5e4738b5f5c2f36fd5

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\jsse.jar
MD5
eb6ca61950d7c34fe6d1d734a1b6a6d7

SHA1
e89da234bd5e00a7c2ea5abb99e3aa54993a8e32

SHA256
2532573c38e277175a0b7eb529fed5f54e20bc961ddf8fcf99d939da954ec760

SHA512
e3a808abf5dfb24203ba1c0482e0e672f537b7299b21c4825c916128afa646d72837c3e81712f6f67d83f7d8d6c9b84ec9853c29f642e7b02b5a69082d250a9a

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\logging.properties
MD5
809c50033f825eff7fc70419aaf30317

SHA1
89da8094484891f9ec1fa40c6c8b61f94c5869d0

SHA256
ce1688fe641099954572ea856953035b5188e2ca228705001368250337b9b232

SHA512
c5aa71ad9e1d17472644eb43146edf87caa7bccf0a39e102e31e6c081cd017e01b39645f55ee87f4ea3556376f7cad3953ce3f3301b4b3af265b7b4357b67a5c

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\meta-index
MD5
83964354d8e8e69dfc1001f01682bd70

SHA1
1f2012a464683ccc1c284d51b20778811641b2ee

SHA256
dff270e76bd7d851cbcf79702aebd71122c3a9e93836ae4e9f650234a754b5c3

SHA512
4be6e0c8ed2bd2f59286bbfa5041676f352e32731e070d7c26511e1e570bd8d6940ff2cc59b0e1656c9c8b3f86186a34709dbf19c303d80840307dacc39d9956

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\rt.jar
MD5
5b374ebed02ef58b1040aeeefe7ab0d9

SHA1
35564367124663646991d3ea4217557adf3c2059

SHA256
00128ae23f1e172e9d314be51545ff00f2169ad55f50276785ff7864c6795415

SHA512
6e7ebb7f3ce72e4035e4ba62cd4fd90f6f63fd3e0334d49412cba55b1bd73cd79b9611b08f678e000e205124798331e4e5a68fd6c916d1b8a37d1b1299ee6422

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\security\java.security
MD5
5437557ab8efaa997e3a4cf2d6e23012

SHA1
751aa69f3eff9f079f8a4834b1416f029cdbd5e4

SHA256
fc7d92dab9e7b2ce281937b747c3341f8039d43290ebf1a0ab41d05f83ec6c55

SHA512
98f46518acb7e3eafa1b5a67ffa308a2f9b6094fe1eeaace6f3b176d4ddbb1d89bf90d247fd21d32d71941163ab5a761f28503bb19e98e44a76df4fad127e614

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\tzdb.dat
MD5
91e23cf0643b8b4109440215fc662aa2

SHA1
f401cdf8f33de0b1442aa64b0437e79133957d20

SHA256
939cd4a7554ad2f85b493d6213c5815736add4eb1a14de37a8c8b0106b952f7a

SHA512
63bee2044eb21fe2ead9e41e893547a6ac4c882413a6749f2e5858fb91678033f36a1f6837c5140a3f4c563a05773647971e913125587b0c53cf23356d35592c

Download Submit
C:\Users\Admin\.prostocraft\jre_launcher\lib\tzmappings
MD5
62bc9fa21191d34f1db3ed7ad5106efa

SHA1
750cc36b35487d6054e039469039aece3a0cc9e9

SHA256
83755efbcb24476f61b7b57bcf54707161678431347e5de2d7b894d022a0089a

SHA512
af0ddb1bc2e9838b8f37dc196d26024126ac989f5b632cb2a8efdc29fbce289b4d0bac587fe23f17dfb6905ceada8d07b18508db78f226b15b15900738f581a3

Download Submit
C:\Users\Admin\.prostocraft\launcher.jar
MD5
0360fe6abe104ecb26a0e3bce2072f52

SHA1
e2708a524408e8f032c443b246e35e31d6d2de0c

SHA256
078407d24cb054aa864bdbd733f9bd9f89fe895a4202d98f598a26db15605cec

SHA512
88626d06b525cbc17787c6f59c307bbc8b1085b01877384ffbbd054a6841503b30998e254a4a56670e841ca0c438500d5d0047a8a7ff10c379af90f06ba02b0c

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\java.dll
MD5
3f31721d9d07e16703822163852ad595

SHA1
eb4fbcaa5a15aa5809c32abec87d9ed6b0d1959b

SHA256
f8620213358c4e63e8c04e095db383f8f39170a9360dd33dbd600ea750a00efc

SHA512
57fda13b745a0b91cf7bcf171f8de7a3537c45d16fbe59c4659502ba69efc6aec786edb0839195c240ca4dc1407138a92e8969410c59e88b0eaf77b4820f2199

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\java.dll
MD5
3f31721d9d07e16703822163852ad595

SHA1
eb4fbcaa5a15aa5809c32abec87d9ed6b0d1959b

SHA256
f8620213358c4e63e8c04e095db383f8f39170a9360dd33dbd600ea750a00efc

SHA512
57fda13b745a0b91cf7bcf171f8de7a3537c45d16fbe59c4659502ba69efc6aec786edb0839195c240ca4dc1407138a92e8969410c59e88b0eaf77b4820f2199

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\java.dll
MD5
3f31721d9d07e16703822163852ad595

SHA1
eb4fbcaa5a15aa5809c32abec87d9ed6b0d1959b

SHA256
f8620213358c4e63e8c04e095db383f8f39170a9360dd33dbd600ea750a00efc

SHA512
57fda13b745a0b91cf7bcf171f8de7a3537c45d16fbe59c4659502ba69efc6aec786edb0839195c240ca4dc1407138a92e8969410c59e88b0eaf77b4820f2199

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\java.dll
MD5
3f31721d9d07e16703822163852ad595

SHA1
eb4fbcaa5a15aa5809c32abec87d9ed6b0d1959b

SHA256
f8620213358c4e63e8c04e095db383f8f39170a9360dd33dbd600ea750a00efc

SHA512
57fda13b745a0b91cf7bcf171f8de7a3537c45d16fbe59c4659502ba69efc6aec786edb0839195c240ca4dc1407138a92e8969410c59e88b0eaf77b4820f2199

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\java.dll
MD5
3f31721d9d07e16703822163852ad595

SHA1
eb4fbcaa5a15aa5809c32abec87d9ed6b0d1959b

SHA256
f8620213358c4e63e8c04e095db383f8f39170a9360dd33dbd600ea750a00efc

SHA512
57fda13b745a0b91cf7bcf171f8de7a3537c45d16fbe59c4659502ba69efc6aec786edb0839195c240ca4dc1407138a92e8969410c59e88b0eaf77b4820f2199

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\javaw.exe
MD5
a7e2be2458fc570315febd27f44bf01e

SHA1
2276d27477ea32a5cf6cbf37bd73b961c2ca791a

SHA256
f1092d1203289bc6c0f05982d3ccd741075eedcd1d3022affb735b4eb0b62b19

SHA512
96f8b285748951679083528f164f3e713c16fb10fe4342674287d963340313577f4cd85e5db6f06037e595492133b9d71ef420aa70fa67786b5b184b502d181a

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\management.dll
MD5
104c87698afab216ba46a12d3249fdd2

SHA1
f5866a5abe8246261d304a99e88a049a9f733c6f

SHA256
334002d1fd15a0bc3b364da760c21f5b37e7577843fe741483b007d750e47037

SHA512
6429a5ecc59c7e6e8c43f566873f76d226e1228d75ab8eb3f00f44dcc0e0e9fe2bf79216138381b2f62b8256ec08e96b74ca145a76e1a534e53f681bb3cdf11f

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\msvcr100.dll
MD5
366fd6f3a451351b5df2d7c4ecf4c73a

SHA1
50db750522b9630757f91b53df377fd4ed4e2d66

SHA256
ae3cb6c6afba9a4aa5c85f66023c35338ca579b30326dd02918f9d55259503d5

SHA512
2de764772b68a85204b7435c87e9409d753c2196cf5b2f46e7796c99a33943e167f62a92e8753eaa184cd81fb14361e83228eb1b474e0c3349ed387ec93e6130

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\net.dll
MD5
cb8432a2d628e71cbc64cdf482acebc9

SHA1
3a4e39e7f7fbb4035e7dc84647daec8df1b0c5a0

SHA256
fa86cfe0062b72f3ce803fde6132b8ab2f976a0bf988398e748c376bba178af0

SHA512
72173b3d64cc529bbbdd17f56bd08648c732158ed11ad685d01fe5e306900046e562e1c5e187c8c586b6d481401717f2bb3d8b4f7d153fc035b2e5d67ef77e21

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\nio.dll
MD5
087ebc333bed4c5098bdc791bb3268b1

SHA1
bf05182a4df4d51b1b1128f87874d997c1cf8be0

SHA256
765a2f4c750b53627f0549641cb998e01ccfa56c40e9d847825d7982e5a0318b

SHA512
7ee2d1c095afb12d638069bf6ecac59f79c48d7e06f428bd52fb8c793ddaa9919a99dd53e8c2c495bc372641875f132ccc3e3808e298f910793a789bc829acc6

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\server\jvm.dll
MD5
5008d1e765a674700b11cd8f2080afa0

SHA1
03bc819591f2c9bbc640f74f73d0bb679b232e70

SHA256
2337c9c4ab16d8e78dc54f7cde3353e75a18a286283a650d5dd318a2cdcc481a

SHA512
34ab0c1153e692fdc9b5e46771d3dd9daf1bacb751c70ae24b9b29426badf1e908202f12d8028b2810596b85b67972666a57c3a710dba3969e8eb6201986c5fa

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\verify.dll
MD5
e2e4d70319b2c6f1d0f3518dcdec41f9

SHA1
c06ad7b35aab3d0e7517e8da6ec771b86864822a

SHA256
2d05c3f8ae307ffff9904524af3a2f30b31f973fa68d9ac3dc76f1efbdabe9fd

SHA512
53ec25c59d1f686fb9473b3b3cc84ed2d20979f792c36adbb6228579d23a38a2fa1d5186fcbb86aa0567651894eb2ed51f5165d59fab8f6e3f354d137ef06cdd

Download Submit
\Users\Admin\.prostocraft\jre_launcher\bin\zip.dll
MD5
607e3117753f1be1d8c6555d8cb7fbd8

SHA1
816e6dc9f77b7f04621863e3d8da1fe804822e9c

SHA256
89e2a52601cbaaf90f56ca486c05ad38afeb127cf6a039039dcb800f8d9ba5f9

SHA512
02272fbbebe3cda6c29fce210561df0001155efba14d28b1b00872ed41b96579eea5676c681a97c0fece001cb791f8ebe4e10af7f4092817ab880cca83a66abc

Download Submit
memory/1104-59-0x000007FEF2F60000-0x000007FEF3FF6000-memory.dmp

Filesize
16.6MB

Download
memory/1104-60-0x0000000002050000-0x0000000002052000-memory.dmp

Filesize
8KB

Download
memory/1104-61-0x0000000002056000-0x0000000002075000-memory.dmp

Filesize
124KB

Download
memory/1624-69-0x000007FEFC181000-0x000007FEFC183000-memory.dmp

Filesize
8KB

Download
memory/1624-65-0x0000000000000000-mapping.dmp

Download
memory/1624-84-0x0000000002370000-0x00000000025E0000-memory.dmp

Filesize
2.4MB

Download
memory/1624-90-0x00000000000A0000-0x00000000000A1000-memory.dmp

Filesize
4KB

Download
memory/1624-107-0x0000000002600000-0x0000000002610000-memory.dmp

Filesize
64KB

Download
memory/1624-106-0x00000000025F0000-0x0000000002600000-memory.dmp

Filesize
64KB

Download
memory/1624-105-0x00000000025E0000-0x00000000025F0000-memory.dmp

Filesize
64KB

Download
memory/1624-111-0x0000000002650000-0x0000000002660000-memory.dmp

Filesize
64KB

Download
memory/1624-112-0x0000000002660000-0x0000000002670000-memory.dmp

Filesize
64KB

Download
memory/1624-109-0x0000000002610000-0x0000000002620000-memory.dmp

Filesize
64KB

Download