99437ad54b4de2927a684460185aa250f206d47a6e9904fa036533b9acccca69

Sharing

Copy URL Twitter E-mail

General

Target

99437ad54b4de2927a684460185aa250f206d47a6e9904fa036533b9acccca69
Size

1.5MB
MD5

da9b4db3aec4c689f60728b481f74745
SHA1

7b018048f87e082a84e4008b3316af4fc7cd1ac7
SHA256

99437ad54b4de2927a684460185aa250f206d47a6e9904fa036533b9acccca69
SHA512

e9fe1ce3201db88b518dceb0bfd126f8cd1218a9059875477b73b5e0778ee4592fe39922598bb9a6954d9d7d3054bf4ed51f1371c783b2ae61bc39f2af015240
SSDEEP

24576:4E5XgbFxYP1exPiY1BZYOjF2fuHKJLQsLTKxphuhCYLDIpKIEuAZPhBtRv98E:WxQyiY1bF2fuE/KNuhCYLP0OhBtt98E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
99437ad54b4de2927a684460185aa250f206d47a6e9904fa036533b9acccca69

Files

99437ad54b4de2927a684460185aa250f206d47a6e9904fa036533b9acccca69
.dll windows:6 windows x86 arch:x86

fc445748dde43e0ee3e47f6280c1fb0c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\jk_9\workspace\Module_PlaySdk_Gerneral_W_PlaySDK_windows\code_path\RenderEngine__89b67f\Bin\Win32\RenderEngine.pdb

Imports

d3d11

D3D11CreateDevice

dxgi

CreateDXGIFactory

opengl32

glEnable
glDepthFunc
glBindTexture
glGenTextures
glLineWidth
glTexParameteri
glDeleteTextures
glDrawArrays
glTexImage2D
glDrawElements
wglGetProcAddress
wglGetCurrentDC
glPushAttrib
glOrtho
glGetString
glPushMatrix
glDisable
glClearColor
glPushClientAttrib
glFinish
glLoadIdentity
glBlendFunc
glMatrixMode
glPopClientAttrib
glPopAttrib
glClear
glViewport
glPopMatrix
wglMakeCurrent
wglDeleteContext
wglCreateContext
glGetIntegerv
glGetError
glPixelStorei

kernel32

SetStdHandle
GetACP
ExitProcess
OutputDebugStringA
Sleep
GetLastError
LoadLibraryExA
GetProcAddress
WaitForSingleObject
SetEvent
CloseHandle
ResetEvent
CreateEventA
ReadFile
WriteFile
FindNextFileA
FindClose
CreateFileA
CreateDirectoryA
GetModuleFileNameA
FreeLibrary
QueryPerformanceCounter
FlushFileBuffers
GetPrivateProfileStringA
VerSetConditionMask
VerifyVersionInfoW
LoadLibraryA
RtlUnwind
EncodePointer
SetLastError
InterlockedPushEntrySList
InterlockedFlushSList
RaiseException
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetFileSizeEx
HeapAlloc
HeapReAlloc
HeapFree
GetProcessHeap
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
CreateFileW
WriteConsoleW
GetModuleHandleExW
GetFileType
GetStdHandle
LoadLibraryW
CreateTimerQueue
UnregisterWaitEx
QueryDepthSList
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExA
IsValidCodePage
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetFileAttributesExW
HeapSize
GetTickCount
InterlockedPopEntrySList
ReleaseSemaphore
TryEnterCriticalSection
GetCurrentThreadId
WideCharToMultiByte
CreateEventW
GetSystemTimeAsFileTime
GetModuleHandleW
DecodePointer
MultiByteToWideChar
CompareStringW
LCMapStringW
GetStringTypeW
GetCPInfo
WaitForSingleObjectEx
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
GetStartupInfoW
GetCurrentProcessId
InitializeSListHead
SignalObjectAndWait
SwitchToThread
CreateThread
SetThreadPriority
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
OutputDebugStringW
GetCurrentThread
GetThreadTimes
FreeLibraryAndExitThread
GetModuleFileNameW
GetModuleHandleA
GetVersionExW
VirtualAlloc
VirtualProtect
VirtualFree
DuplicateHandle

user32

GetDesktopWindow
GetClientRect
ClientToScreen
MonitorFromWindow
GetMonitorInfoA
IsWindow
FillRect
ReleaseDC
GetDC

gdi32

CreateDIBitmap
CreateHatchBrush
GetStockObject
Polyline
CreatePen
Ellipse
TextOutW
SetTextColor
SetBkMode
ChoosePixelFormat
SwapBuffers
SetPixelFormat
CreateSolidBrush
SelectObject
CreateDIBSection
CreateCompatibleDC
StretchBlt
StretchDIBits
DeleteDC
SetStretchBltMode
DeleteObject
CreateFontIndirectA

ddraw

DirectDrawEnumerateExA
DirectDrawCreateEx

msimg32

TransparentBlt

Exports

Exports

RENDER_3DGetCoordScreenTransWorld
RENDER_3DGetCoordWorldTransScreen
RENDER_3DGetModelRotate
RENDER_3DGetModelScale
RENDER_3DGetModelTranslate
RENDER_3DGetPerspectiveFovy
RENDER_3DGetViewMoveDistance
RENDER_3DGetViewPoint
RENDER_3DResetModel
RENDER_3DSetModelRotate
RENDER_3DSetModelScale
RENDER_3DSetModelTranslate
RENDER_3DSetParam
RENDER_3DSetPerspectiveFovy
RENDER_3DSetViewMode
RENDER_3DSetViewMoveDistance
RENDER_3DSetViewPoint
RENDER_AlgoCommand
RENDER_AntiAliasing
RENDER_ClearScreen
RENDER_ColorAdjust
RENDER_Create
RENDER_Destroy
RENDER_Draw3DPointCloud
RENDER_DrawArc
RENDER_DrawArrow
RENDER_DrawBitmaps
RENDER_DrawCharacters
RENDER_DrawEllipse
RENDER_DrawImage
RENDER_DrawLines
RENDER_DrawPoints
RENDER_DrawPolygon
RENDER_DrawProfiledWindow
RENDER_GetAlgoType
RENDER_GetPanoARCoord2DTrans
RENDER_GetPanoARCoord3DTrans
RENDER_GetRenderType
RENDER_GetVersion
RENDER_GetWinHeight
RENDER_GetWinWidth
RENDER_Present
RENDER_ResetAdjustColor
RENDER_Rotate
RENDER_ScreenShot
RENDER_SetAlgoParams
RENDER_SetElementInfo
RENDER_SetFontInfo
RENDER_SetOESTextureCreateCallback
RENDER_SetVideoRenderCallback
RENDER_SetViewPort
RENDER_SetViewProportion
RENDER_VerticalSync
RENDER_ViewResolutionChanged

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 375KB - Virtual size: 374KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc445748dde43e0ee3e47f6280c1fb0c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

d3d11

dxgi

opengl32

kernel32

user32

gdi32

ddraw

msimg32

Exports

Exports

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 375KB - Virtual size: 374KB

.data Size: 27KB - Virtual size: 74KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 63KB - Virtual size: 63KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 375KB - Virtual size: 374KB

.data
Size: 27KB - Virtual size: 74KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 63KB - Virtual size: 63KB