Overview

overview

4

Static

static

1

URLScan

urlscan

http://oasisnetwor.o...

windows10-1703-x64

4

Analysis

  • max time kernel
    1799s
  • max time network
    1608s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    30/05/2024, 13:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    http://oasisnetwor.one

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 5 IoCs
  • Modifies Internet Explorer settings 1 TTPs 2 IoCs
    adwarespyware
  • Modifies registry class 64 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious behavior: MapViewOfSection 9 IoCs
  • Suspicious use of AdjustPrivilegeToken 6 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs
  • Suspicious use of WriteProcessMemory 14 IoCs

Processes

  • C:\Windows\system32\LaunchWinApp.exe
    "C:\Windows\system32\LaunchWinApp.exe" "http://oasisnetwor.one"
    1⤵
      PID:600
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
      1⤵
      • Drops file in Windows directory
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:2452
    • C:\Windows\system32\browser_broker.exe
      C:\Windows\system32\browser_broker.exe -Embedding
      1⤵
      • Modifies Internet Explorer settings
      PID:304
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Modifies registry class
      • Suspicious behavior: MapViewOfSection
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:4840
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Drops file in Windows directory
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of SetWindowsHookEx
      PID:2356
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Drops file in Windows directory
      • Modifies registry class
      PID:3272
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Modifies registry class
      • Suspicious use of AdjustPrivilegeToken
      PID:1896
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Modifies registry class
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:1108
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Drops file in Windows directory
      • Modifies registry class
      PID:2136
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Modifies registry class
      PID:2888
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Modifies registry class
      PID:96

    Network

          MITRE ATT&CK Enterprise v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\V28C7N3J\edgecompatviewlist[1].xml
            Filesize

            74KB

            MD5

            d4fc49dc14f63895d997fa4940f24378

            SHA1

            3efb1437a7c5e46034147cbbc8db017c69d02c31

            SHA256

            853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1

            SHA512

            cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\M6OX6DWV\app.min[1].css
            Filesize

            142KB

            MD5

            88487d067870224b7db563581c97f2f9

            SHA1

            44cd5d789500ae7c772368bb5735ef3888c18072

            SHA256

            4132ac4924ecdc7674e462e778cbd6e96adf850fd4571f05a2ac1333447fec85

            SHA512

            964112db962513e2f80313b3dca09f22807f86f220c488af37a224c6f28db502b9c519b3a6d890ba44423e811bc994c8443ce9af6ff1f88bfbda8a84c359cd22

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\M6OX6DWV\css2[1].css
            Filesize

            906B

            MD5

            78ac8a50c047a48099f4819838f1f971

            SHA1

            14e4d207cfc9b78a4915e9a3b7dfa484293f22e3

            SHA256

            ec629be4350f081e8f4420495de50a45232c46565919d3ef7343ed25e97be919

            SHA512

            1e6a5fdffd9c2036c7a28004cb959f90b16805bc38d316ffb20fa66d7dcaf6ba40692baf989cadedcd40be8b9c631025485b26b1cdaf577c65ce1596c8f258ea

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\M6OX6DWV\jquery.min[1].js
            Filesize

            87KB

            MD5

            dc5e7f18c8d36ac1d3d4753a87c98d0a

            SHA1

            c8e1c8b386dc5b7a9184c763c88d19a346eb3342

            SHA256

            f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

            SHA512

            6cb4f4426f559c06190df97229c05a436820d21498350ac9f118a5625758435171418a022ed523bae46e668f9f8ea871feab6aff58ad2740b67a30f196d65516

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\M6OX6DWV\login[1].htm
            Filesize

            4KB

            MD5

            fe310691282ca2e7109f504d22b494b1

            SHA1

            bccfec5d22cecb9b1c29d4fc34d5bf94a88feab1

            SHA256

            d8f09307b60c5bef5ceacfd8501bd3d91f1de9e5e746bb2d7def94d86789da50

            SHA512

            b7ff8301ec6b1a30d84286e395e5db3a14b2573436777a5bc6ce709d1f3055757c624de392b0e4705a5556c132edcd9ec269014251f1e2166e4a5196201fbf54

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\M6OX6DWV\warmup[2].gif
            Filesize

            43B

            MD5

            325472601571f31e1bf00674c368d335

            SHA1

            2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a

            SHA256

            b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

            SHA512

            717ea0ff7f3f624c268eccb244e24ec1305ab21557abb3d6f1a7e183ff68a2d28f13d1d2af926c9ef6d1fb16dd8cbe34cd98cacf79091dddc7874dcee21ecfdc

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\Q22KK50K\KFOlCnqEu92Fr1MmWUlvBg[1].woff2
            Filesize

            49KB

            MD5

            90f0b37f809b546f34189807169e9a76

            SHA1

            ee8c931951df57cd7b7c8758053c72ebebf22297

            SHA256

            9dcacf1d025168ee2f84aaf40bad826f08b43c94db12eb59dbe2a06a3e98bfb2

            SHA512

            bd5ff2334a74edb6a68a394096d9ae01bd744d799a49b33e1fd95176cbec8b40d8e19f24b9f424f43b5053f11b8dd50b488bffedd5b04edbaa160756dd1c7628

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\Q22KK50K\KFOmCnqEu92Fr1Me4A[1].woff2
            Filesize

            49KB

            MD5

            ee26c64c3b9b936cc1636071584d1181

            SHA1

            8efbc8a10d568444120cc0adf001b2d74c3a2910

            SHA256

            d4d175f498b00516c629ce8af152cbe745d73932fa58cc9fdfc8e4b49c0da368

            SHA512

            981a0d065c999eea3c61a2ba522cb64a0c11f0d0f0fe7529c917f956bce71e1622654d50d7d9f03f37774d8eee0370cfb8a86a0606723923b0e0061e1049cbc6

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\Q22KK50K\daterangepicker[1].css
            Filesize

            8KB

            MD5

            ccca85807858e793faa8b93026b7e357

            SHA1

            69e2151abc1b2c9b3b34a490980f54baf2ae73c0

            SHA256

            119f7b90fb354d7c322f5a9fe3f7a4891709f8d4f1d611a7e1afbb48d74b0f94

            SHA512

            a958662fc0fb085e0807beabba945bf600dcc1b874bc7b7ec3b0149053dff820bf71488da802776fb3d532a874d1b7993266876b7acde2d87d137b7be498b736

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\Q22KK50K\feather.min[1].js
            Filesize

            71KB

            MD5

            ebb5ac3f4f7ad6a7453f1cb7a2214f31

            SHA1

            29c0698f8b607c94c4e002e92a8c25ac70b2d2c3

            SHA256

            36f832aa433d56ed432c7933c53c5743164d743ca6525c215dc48912a51f3e25

            SHA512

            69fe14af4802820eda74a559f0474848bf5b8c80366a7f61137919f0a7b7d7497302df381165a155e56e1e132a85ad5dae4164754b50a6def08b24e87c7e388d

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\Q22KK50K\metisMenu.min[1].css
            Filesize

            1KB

            MD5

            8577b369f2381960d8ac2fe7f31e54f6

            SHA1

            d869c978f5f68ef4cc29f2cca11eeede4fff66dd

            SHA256

            099ac56e52f547f59624894dd9416afbcd13ba299bd439f649f597bee2b7a9c6

            SHA512

            e446e8165678a391ca1f941525455fda8988b4d1bc53974b876dc856f09fb3f40012c363a1461acbe12c2fe5e50f5e11a6a0fadf4d03296b9a2018dbde71f30d

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UQ0KRP2U\KFOlCnqEu92Fr1MmSU5vBg[1].woff2
            Filesize

            49KB

            MD5

            8a62a215526d45866385d53ed7509ae8

            SHA1

            5f22bfd8ff7dab62ac11b76dee4ef04b419d59b5

            SHA256

            34ccd21cf8cc2a2bdcd7dbe6bef05246067ff849bf71308e207bf525f581763d

            SHA512

            845f721e564e03955c34607c9c9cf4000db46788313ebf27c1d12473c7948cf2609b08b24093c5d01f6c97acc79456e7aa838c291462bfb19700bbfd07ee243f

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UQ0KRP2U\bootstrap.bundle.min[1].js
            Filesize

            82KB

            MD5

            7f389f5d2622ce2090eca7c36bcb90bc

            SHA1

            ab27031159724e2421f6ff5c70f48e657abe9d39

            SHA256

            8d7089253dca29c9cd8d9deb7ec69b0a3d445f88f6a26478c719be1f90adcb01

            SHA512

            89c7978e36e6076af0a17f7729ae870073fe07be88635cf4a3787e3753de0ed452b3279eb54dffd10289a86c8f25c5fadf3cac35e860805c0c0bf6e2eddbcc8a

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UQ0KRP2U\icons.min[1].css
            Filesize

            469KB

            MD5

            9b19a2af34c09da87c1a39963e66bf77

            SHA1

            9ddb1e4a2fcff03cb131c01ad197f72c5442b9be

            SHA256

            20e6bb3cf9d13f10bca7b7b5d1f4cb82146c274747e8c2ae7fe3307881f00829

            SHA512

            6b629ebc65baab7c90d8f22b40272de8dceeeeca7e6b1063ced748059e54277f9368b76f25257ca826527f42ca241fcd99bdbae28bc9bc446cc705eff7c0ff9a

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\UQ0KRP2U\simplebar.min[1].js
            Filesize

            56KB

            MD5

            a8680d7a3ac007fb2b94a183791c435e

            SHA1

            a21a5ada6a6ca5bdd3f7ff75d0f68e89784058ba

            SHA256

            84575d0fa5cc23015b6b8213423a6fe56584e79ef0e8ed30f5145f9868c8cf89

            SHA512

            85112633081e0439e92da6e071a0ea2ad39234cf2eee4260cf919ef6a938f5df2b69aa3da3f199926606cf2356ff5ffa9c199437bcc93356e6dfa1553753ad0c

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ZH6LRILQ\KFOlCnqEu92Fr1MmEU9vBg[1].woff2
            Filesize

            49KB

            MD5

            08c655068d5dd3674b4f2eaacb470c03

            SHA1

            9430880adc2841ca12c163de1c1b3bf9f18c4375

            SHA256

            4fc8591cc545b7b4f70d80b085bf6577fad41d5d30ddd4f0d0c8ab792084c35e

            SHA512

            b2fce4bc018fa18de66095cc33d95455a4d544e93d512b02bcb8af06aadb550cd0f4aecbceaa013857196c91b6e3c4565a199835cfb37c682cb7bddb69420198

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ZH6LRILQ\bootstrap.min[1].css
            Filesize

            155KB

            MD5

            9a073152f0d7006c650c9633e06181f8

            SHA1

            bc51160eb291083d4f04c85edeb332a3cb82dda9

            SHA256

            9faf0345bf0785854343b9303734c2f4d3adba818cb408dcc6e2384ccc8a7aa2

            SHA512

            3517e4ddfb3d9e0a7a6383a66207bf80bb9491c4d0766d3b33257aa3b4f16655d5340d0a537c9877542e1d18e4f9b624eb08b6aa2d22ea1eee14abf749201d51

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ZH6LRILQ\css2[1].css
            Filesize

            1KB

            MD5

            fd564dbd77edc64e67f367cca39c2f6e

            SHA1

            689d2e388a97a5aca594232b86d62980fc3b6383

            SHA256

            f0d8ea5faf4cafdb53a8c448b42ef18e0f7e378d0338e6a24d23e127d85b63d1

            SHA512

            416ccf03c3a1a9972a00dacef2476b54a59cfb0b3a70816bb51e3b7f815cdd0e75952baae2ed462c2dcc14f41e8b26761a01df95d8369fc546b3f001af53371e

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\Cache\ZH6LRILQ\waves[1].js
            Filesize

            18KB

            MD5

            16995356a7ff9061d800c2e4c7407879

            SHA1

            caf0964cba63d3ff8f9c6cdd9dbda6ccdbc4a085

            SHA256

            4b11e7c433e0918139535b861674cec60f4fdee98de7eed0a1c7ce0afa5a60fa

            SHA512

            922dc1205e306ff9428fcdf61da25f31689dfa308dc844f7ca0521790ad85ba8bf249aa2221d1a660d672ce704548ed2e2d57157cc666e308f0a324ee49b9f31

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\H921P1MP\www.bing[1].xml
            Filesize

            1KB

            MD5

            32faf025d3df5d83687ee624cc781b7c

            SHA1

            ac233d3bfe5a5dc8cc952462be0fed108c7cbd9d

            SHA256

            6aeba9060ec94efac3d6c6510d1ab87df231ed3f0d97f6b17bc94b2a072de33b

            SHA512

            291856c31734716780a79b9408ae2f2985c22bdfa0db57371e06cdcf5bb4ffa73138689ac48c0e0a6556b0f92077c5fbb7b7681b7543e728db855bbb5125f89b

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\H921P1MP\www.bing[1].xml
            Filesize

            11KB

            MD5

            e295d52e4f572d81820d410a4989ef4d

            SHA1

            f01c98e95991b5cbb371077f6204c52c03b13098

            SHA256

            a1b210ee41c430981495b83607c447bb754c843f0d44538e299982932ba30613

            SHA512

            c49ea763f44f46fe7297680ef70a9faae2af0bfac77845b86d8cc1aa451c1aa9458698b58cb9d8eb2e1c3c4e5d4d0d27260d7c8cf66334b52599dcdb17826371

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\0BCD25EK\suggestions[1].en-US
            Filesize

            17KB

            MD5

            5a34cb996293fde2cb7a4ac89587393a

            SHA1

            3c96c993500690d1a77873cd62bc639b3a10653f

            SHA256

            c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

            SHA512

            e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

            Download Submit

          • memory/1108-428-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-441-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-427-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-433-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-434-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-439-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-440-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-122-0x0000017267B10000-0x0000017267C10000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/1108-442-0x0000017267620000-0x0000017267630000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1108-177-0x0000017278390000-0x00000172783B0000-memory.dmp

            Filesize

            128KB

            Download

          • memory/1108-172-0x0000017267C90000-0x0000017267CB0000-memory.dmp

            Filesize

            128KB

            Download

          • memory/2356-44-0x000001E7B0A00000-0x000001E7B0B00000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/2356-42-0x000001E7B0A00000-0x000001E7B0B00000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/2356-43-0x000001E7B0A00000-0x000001E7B0B00000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/2452-83-0x000001413CFE0000-0x000001413CFE1000-memory.dmp

            Filesize

            4KB

            Download

          • memory/2452-82-0x000001413CFD0000-0x000001413CFD1000-memory.dmp

            Filesize

            4KB

            Download

          • memory/2452-16-0x0000014136820000-0x0000014136830000-memory.dmp

            Filesize

            64KB

            Download

          • memory/2452-35-0x0000014133D90000-0x0000014133D92000-memory.dmp

            Filesize

            8KB

            Download

          • memory/2452-0-0x0000014136720000-0x0000014136730000-memory.dmp

            Filesize

            64KB

            Download

          • memory/3272-57-0x000001D67ECC0000-0x000001D67ECC2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3272-59-0x000001D67ECE0000-0x000001D67ECE2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3272-61-0x000001D67EEA0000-0x000001D67EEA2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3272-63-0x000001D67EEC0000-0x000001D67EEC2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3272-53-0x000001D67EC80000-0x000001D67EC82000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3272-50-0x000001D66DF00000-0x000001D66E000000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/3272-55-0x000001D67ECA0000-0x000001D67ECA2000-memory.dmp

            Filesize

            8KB

            Download