Overview

overview

4

Static

static

1

watch.html

windows10-1703-x64

4

Resubmissions

02/10/2024, 16:44

241002-t81pnszfrc 3

02/10/2024, 15:39

241002-s35wrsxfqc 4

Analysis

  • max time kernel
    61s
  • max time network
    38s
  • platform
    windows10-1703_x64
  • resource
    win10-20240404-en
  • resource tags

    arch:x64arch:x86image:win10-20240404-enlocale:en-usos:windows10-1703-x64system
  • submitted
    02/10/2024, 15:39

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    watch.html

  • Size

    820KB

  • MD5

    0a798931bf0a4f7c790f497b2baa4c2a

  • SHA1

    c2a64e7f1a54a8a7c1372bfa028dfe5d63bea8d1

  • SHA256

    de3b014775c5725efc556c79dcf1adfe3b66ab76a6ed65e68e0f72ecb1203656

  • SHA512

    3e7934d5a6291569a869e256e34b5cf347ce7c5aac7dcfd255db35791b4d1338e20829b831523add1b472c18d29fe71fbe74d9f8513ab6bddc916cebd102ea0e

  • SSDEEP

    12288:5OWYcYoYTYMYfYHYRYWY6YnbPML7LAcFU:5Ez

Score
4/10

Malware Config

Signatures

  • Drops file in Windows directory 6 IoCs
  • Modifies Internet Explorer settings 1 TTPs 3 IoCs
    adwarespyware
  • Modifies registry class 64 IoCs
  • Suspicious behavior: MapViewOfSection 8 IoCs
  • Suspicious use of AdjustPrivilegeToken 7 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Suspicious use of WriteProcessMemory 6 IoCs

Processes

  • C:\Windows\system32\LaunchWinApp.exe
    "C:\Windows\system32\LaunchWinApp.exe" "C:\Users\Admin\AppData\Local\Temp\watch.html"
    1⤵
      PID:4960
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
      1⤵
      • Drops file in Windows directory
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:3344
    • C:\Windows\system32\browser_broker.exe
      C:\Windows\system32\browser_broker.exe -Embedding
      1⤵
      • Modifies Internet Explorer settings
      PID:2596
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Modifies registry class
      • Suspicious behavior: MapViewOfSection
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:4604
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Drops file in Windows directory
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of SetWindowsHookEx
      PID:2256
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Drops file in Windows directory
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of AdjustPrivilegeToken
      PID:1264
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Drops file in Windows directory
      • Modifies registry class
      PID:4416
    • C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
      "C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
      1⤵
      • Drops file in Windows directory
      • Modifies registry class
      PID:3452

    Network

          MITRE ATT&CK Enterprise v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\V28C7N3J\edgecompatviewlist[1].xml
            Filesize

            74KB

            MD5

            d4fc49dc14f63895d997fa4940f24378

            SHA1

            3efb1437a7c5e46034147cbbc8db017c69d02c31

            SHA256

            853d2f4eb81c9fdcea2ee079f6faf98214b111b77cdf68709b38989d123890f1

            SHA512

            cc60d79b4afe5007634ac21dc4bc92081880be4c0d798a1735b63b27e936c02f399964f744dc73711987f01e8a1064b02a4867dd6cac27538e5fbe275cc61e0a

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
            Filesize

            4KB

            MD5

            1bfe591a4fe3d91b03cdf26eaacd8f89

            SHA1

            719c37c320f518ac168c86723724891950911cea

            SHA256

            9cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8

            SHA512

            02f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\38J4QQWE\scheduler[1].js
            Filesize

            9KB

            MD5

            7180c9462bf551e8e0f674019a92aff9

            SHA1

            50976d9a1337a3ca9c464a1ce201f43d4dba3f32

            SHA256

            6061d61909f7031cbadf38be046e13b56c05a2139067f5f75cc8791a7525f940

            SHA512

            77b6d1c96d6e36f2e376cff30337dd65a9d07965072374278822734e648997693ac404b292c54ef32350d5106d49a9de7f0b2f2f941f392bea83fb6a74da8ef3

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\38J4QQWE\www-main-desktop-player-skeleton[1].css
            Filesize

            2KB

            MD5

            4326cd919d56a62e61d337311ebd711d

            SHA1

            a5af4bc0ac40fdd1377dd7d5ea686e703451b7ed

            SHA256

            c649cebb3e80574123138dbd321b259dabca335aa73a997f8ae1f9682914836c

            SHA512

            32cbccf0323a11e66b06b7d540b8fc983d215b002f64853c86832ca98cbcbfaac68acde9a3648670c6d721f13ae11e5586715f26bbc906156585f5d065eeed7d

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\IGA2LN50\fetch-polyfill[1].js
            Filesize

            9KB

            MD5

            61087064c449660bd5d85ec1b3cfcf52

            SHA1

            88306690d0b3d8f99a3c79bf46f00755d03e7548

            SHA256

            3b97880e54ee3e8c796392eb66b8ee99f550391e574b782444da49550e4e42fb

            SHA512

            f4e2b445d9ace5ef59a2905fb25c5ad63be2231d4ce3b0e29ddb157acccfee62fb30cbc84fd338490dc346fa890bb07fed980d85fe1bec9e6f5c60020edb2784

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\IGA2LN50\network[1].js
            Filesize

            13KB

            MD5

            a6b9d65542f265d2edf1ef3dc3473500

            SHA1

            8a81a628de798cd9658b2705a830c664cf19d485

            SHA256

            2dc0785db6ff5df6216126dc7a5ce4a60097f99bb5213a19e7582b154cbde9bd

            SHA512

            59689a131f0e8d8c13e22edb3e9436cff75f6a8aaba32220728012e4528d18c0144130650d40a1dbf2a9e7f32a1af14663dc20dab87607a389bd65e384d96c9c

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\IGA2LN50\webcomponents-all-noPatch[1].js
            Filesize

            110KB

            MD5

            3500fff778d02da74204902261327e12

            SHA1

            a940a38a4da7206452d895249024ee7530895a78

            SHA256

            615288917db60ea7f0e52360b4811db826c84e679ac5802f189a7077c3ad110b

            SHA512

            3ceb896447e9b93ba6d1a87f003dd4c446db5c6edff5b2b529eaf01cb317bb6b926246d05cc010aa72843ec9beb5d240e39275e05312a5e96ac20a57ebf7a801

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\KPERY3SP\intersection-observer.min[1].js
            Filesize

            5KB

            MD5

            e02d881229f4e5bcee641ed3a2f5b980

            SHA1

            29093656180004764fc2283a6565178eb91b5ef3

            SHA256

            8037c1f1e0e4d3d7955f591a14a4b4d090141f1d210ef8b793ce5b345f08f7f5

            SHA512

            f4e8e21b91ee33879a2295215cba91e12851891165fe3f9f98913022280ef8192fd3f5def06aa8ac1fbe6d43d09034b0bb8e29e8703366a012e1fde6ff2828db

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\KPERY3SP\spf[1].js
            Filesize

            37KB

            MD5

            ecc584780638920ed5cca8ec8224c0d5

            SHA1

            4ccd21668cfe4dde49c929d2075029595195e406

            SHA256

            713e99fddb2bd090c15001a45cfbbef240d275be96270374345609ad5d67cce5

            SHA512

            d5df5c291344b3f395c7c65bbfe186c44898c928d0e02e18612989af7773195495ac89ad4c0856b519b64d3aa66e7f38fffbd82511cce5a2a048c93928864325

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\KPERY3SP\web-animations-next-lite.min[1].js
            Filesize

            49KB

            MD5

            9e1f5b2285bce3a471297b1505058b57

            SHA1

            c0cbe8b0a96f32c25adbae33932188d495a4135c

            SHA256

            708021b0a03278843afdf5190777b25bead3458548e7c221ac1ff6f6e6e17bad

            SHA512

            a10b9f0fa257580a1e44b5f756f99a149193d6b71f98590eba7bff2a6a3853c32a0d8d44a8967154eefab884d7964d148d38991393cc4785249f38253242099b

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\XPURKEUW\rs=AGKMywF0JCb75JvSylyacYTqD-RLJ5TwFA[1].css
            Filesize

            2.9MB

            MD5

            f948897a0d154b7d02403d1165001ada

            SHA1

            52dba0bc9bc26c487a21652ee7c4d353be96b682

            SHA256

            65f9dc445c6d0d0d74a672191af64e0305d0ec60c467ae98dec80b9a0dadcee1

            SHA512

            dcde65848877a137ed5944775899d0979bca037a92fb0a702674d8696e49f2460e88295919087aed6391938699702531071ddfde02980fe1d2f0dc398e6d2d9c

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\XPURKEUW\www-i18n-constants[1].js
            Filesize

            7KB

            MD5

            33ebd7f8769f70fc4c0ec0517959dba2

            SHA1

            c6d3a7af846f15a9ab8ba7ee41a99206fcdf3e18

            SHA256

            ea3a64c03f419f486109b3f224f1f3c1a1891b22b508ea3560aed9b7a1a0c683

            SHA512

            ac0defcaa791c24ab7dff012d7fba21d91296a7982f7bbad0aa622096b1d7452d1f395ba15b8b6a0bf79cdd6aa286d29633e7ccd6429d5e8e5a3aeef38f88472

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\XPURKEUW\www-main-desktop-watch-page-skeleton[1].css
            Filesize

            8KB

            MD5

            64c8e3b11cfffc8ebf2240e4f46ab492

            SHA1

            71276680811731f983502e477a87e87cfe72d75f

            SHA256

            3acc199c41eb3c884ee9884c15e6b78975499be2255aa203dba38ef24440181c

            SHA512

            497a48233bb198e05517e2cba003c2c5ba25183e1654b5b8252b9823f0859497ccab66a77e243238b27ea6eb826ae4fc72efb2f32b2b378edee7f9dfb87f4756

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\MicrosoftEdge\Cache\XPURKEUW\www-onepick[1].css
            Filesize

            739B

            MD5

            9ace9ca4e10a48822a48955cbd3f94d0

            SHA1

            1f0efa2ee544e5b7a98de5201fb8254b6f3eb613

            SHA256

            f8fdbb9c5cdceb1363bb04c5e89b3288ea30d79ef1a332e7a06c7195dd2e0ec4

            SHA512

            25354aeecb224fd6d863c0253cd7ad382dce7067f4147790ee0ce343f8c3e0efb84e54dd174116e7ad52d4a7e05735039fa1085b739abbe80f9e318e432eed73

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
            Filesize

            854B

            MD5

            e935bc5762068caf3e24a2683b1b8a88

            SHA1

            82b70eb774c0756837fe8d7acbfeec05ecbf5463

            SHA256

            a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

            SHA512

            bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
            Filesize

            1KB

            MD5

            f00c95c426fd18498407cf506e553dd8

            SHA1

            94469c3105167ba41cd2080f8a65298a00a712e7

            SHA256

            1dec54ecddb88b2c3da463cc2d4bd585faab0fb8ecfbd62af1d9ad30fe4640e2

            SHA512

            6e9e8c80141f471987612250fe1db1b7e4ad49b540e99a62df70fb689017bc74241273346011128f40f3d3055db2b589325ea19c03f1df97e40041c323ba2790

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\Content\6DA548C7E5915679F87E910D6581DEF1_058F778FC8346DE378B15A5652BAADD9
            Filesize

            472B

            MD5

            793dfb9c091e5f242408b272f1d18fe5

            SHA1

            653185e6f6a114838f932fe3ae3d18d230627379

            SHA256

            d740d55af08b23aee2abbce7656163e1cfc5f5eaecaa431b21ffc46b10632a74

            SHA512

            93e1eb2679ba2c83d39dbd2df4cf98af6bb89299380ccf8f04c8bda99c4af0f118e966fd0a5952d8995c0002ad0c80a1d211d5bcf89ba796a16165f707fb3ea4

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\Content\C02877841121CC45139CB51404116B25_6E79E88153381DFBE856B68C8227EF7D
            Filesize

            472B

            MD5

            521109ad5488f476814098947a6062b1

            SHA1

            0ceec1a19dee6042792d3d3fb3263cbe979d9048

            SHA256

            f88294fc434bdba84424748d529d83f87b2fd8ad8ae00011cdcb03d216e91baa

            SHA512

            019f9bbadaa77706ce95c2d5f949df1e8f791e6443f0afcc0d9c013915cffcfc90d6f50b4e99d9ec69560cc6387e7c0bc1d26efdff4d594036a4758a8ed189d8

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
            Filesize

            170B

            MD5

            35ea2ac7d5b4c23b22101107a2156912

            SHA1

            81068d67a0682abc0fcf4197c6ee10c04a876b15

            SHA256

            832d240d7de9802f8db0f35fd3afa52ba779edb6cea3cc5100afa186b99fd0b5

            SHA512

            a99e11fac95123f5cb44ea649538855c28f369f0ebbaa25a183ce05788e8fc71169fbf614762b76b299985e97fc4cfc139295dcca1330fd31208004e14adab80

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
            Filesize

            410B

            MD5

            c60d760050e6ec70cae9c6bfd5c63790

            SHA1

            86287d369fbc513025756ccb0a22f46e4b166a01

            SHA256

            084822b196c04b2590faa02141c8822c8da06b669a6b112ba9e11b05982fa2f1

            SHA512

            3e0125323b94daf7d31fd1d781a7d3f6cbee3479c1f91944ca8a8a2653398fd2c516658c1c5dd5b869ce10dc0751876f44c731da8db0479f327f644d5b254fcc

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\MetaData\6DA548C7E5915679F87E910D6581DEF1_058F778FC8346DE378B15A5652BAADD9
            Filesize

            402B

            MD5

            a167fb9ab851ce811874bfedc6988cce

            SHA1

            4cd57e0d7f323aef8e489936164ec0337ca914a5

            SHA256

            0efc70fc5ee7ac8d153d6ddb8ad991e3668303443d737faddc949c9065b12e6e

            SHA512

            ecad7fe27fd6e6988107d7720fbcc81b79861c19dc8d3c47939243a41a164cfb407bfad4bdba3d8bbc460c9086fa01337eef0553f9bc47421264a71f12517653

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\CryptnetUrlCache\MetaData\C02877841121CC45139CB51404116B25_6E79E88153381DFBE856B68C8227EF7D
            Filesize

            402B

            MD5

            39e22b836354cb838b15099b1d036717

            SHA1

            058357a0f64e9734dc10e528e3c0d7bfbe2de6e0

            SHA256

            f4a0ec6b8cd61d5c75645c5708a05b4aaa81abe6a8de98ccf4a886a923ac5708

            SHA512

            bbacacd2c7b144c0ef7a548e4e832009139565cfa3c00a4cfbfe7be9de499d11f16c18437abcf39738aaf29b04b84ebac15bad419167d304e056b270e0eb8c77

            Download Submit

          • C:\Users\Admin\AppData\Local\Packages\microsoft.microsoftedge_8wekyb3d8bbwe\AC\#!121\Microsoft\Windows\3720402701\1568373884.pri
            Filesize

            218KB

            MD5

            13e8857c11c103c86af5a010ba171f66

            SHA1

            dd8f6ee3cd8b1ac01c480e0843c323805c3cf2ae

            SHA256

            8b69fd5d6b540b3080b438f3cf0d42f3266654e786ce7dc5e85855d309e962ac

            SHA512

            8454d4a02c15e12428628aaf9df2f5ec48d261e692a8b4f2e7e81d83c3acd6921bfb2d3ebc76f78f124fd0065852af348bec56a91e7ba9c54525615d6b7804b0

            Download Submit

          • memory/1264-93-0x0000015577700000-0x0000015577720000-memory.dmp

            Filesize

            128KB

            Download

          • memory/1264-51-0x0000015577000000-0x0000015577100000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/2256-47-0x000002823A700000-0x000002823A800000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/3344-16-0x0000029A5C520000-0x0000029A5C530000-memory.dmp

            Filesize

            64KB

            Download

          • memory/3344-0-0x0000029A5C420000-0x0000029A5C430000-memory.dmp

            Filesize

            64KB

            Download

          • memory/3344-35-0x0000029A597C0000-0x0000029A597C2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3452-176-0x0000019B83140000-0x0000019B83240000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/3452-174-0x0000019B83140000-0x0000019B83240000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/3452-185-0x0000019B93EC0000-0x0000019B93EC2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3452-183-0x0000019B93EA0000-0x0000019B93EA2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3452-181-0x0000019B93E80000-0x0000019B93E82000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3452-179-0x0000019B93E60000-0x0000019B93E62000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3452-189-0x0000019B93FA0000-0x0000019B93FA2000-memory.dmp

            Filesize

            8KB

            Download

          • memory/3452-187-0x0000019B93F80000-0x0000019B93F82000-memory.dmp

            Filesize

            8KB

            Download

          • memory/4416-137-0x000002B0BEC60000-0x000002B0BED60000-memory.dmp

            Filesize

            1024KB

            Download

          • memory/4416-154-0x000002B0CF900000-0x000002B0CF920000-memory.dmp

            Filesize

            128KB

            Download