d3d10_1core[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

d3d10_1core.dll
Size

244KB
MD5

d4212ab475a3b25ec4df574536c3edc5
SHA1

172dbe3bde5b863599b5195d8756b9e24875b30d
SHA256

f8bbeecb66ba6dde5a64ed41d8bf95a1c81470552b4bfd5b11d888156289ccdd
SHA512

103d0cf218128b41b73556e9e591821027325f4f18ddd15dcdd5f4ad0e35157d2cd70eb77506203614aec347cd8f86fe2ae2fb917049e0660c01dd5ca6ee76e7
SSDEEP

3072:1iffMQiffM1iffMPchGfzFc4fx74pIRE3JgZn2ltsWXdhF20bTF1DaxQLCwrsRYE:ZhGfZc4fx7sIRE3JgZnkDF20yusf33

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3d10_1core.dll

Files

d3d10_1core.dll
.dll windows:6 windows x86 arch:x86

5e5a68531f48eb45dc7be5a122d90fc6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d3d10_1core.pdb

Imports

msvcrt

_unlock
_lock
_initterm
_amsg_exit
_XcptFilter
__CxxFrameHandler3
__dllonexit
memset
_aligned_free
_aligned_malloc
_purecall
ldiv
memmove_s
??0exception@@QAE@ABQBD@Z
memcpy_s
_CxxThrowException
?what@exception@@UBEPBDXZ
??1exception@@UAE@XZ
_onexit
??1type_info@@UAE@XZ
_except_handler4_common
_callnewh
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
malloc
free
_stricmp
tolower
isdigit
_ftol2_sse
memcmp
memcpy

dxgi

DXGID3D10GetLayeredDeviceSize
DXGID3D10RegisterLayers
DXGID3D10CreateDevice
DXGID3D10CreateLayeredDevice

kernel32

TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
InterlockedExchange
GetTickCount
GetModuleHandleExA
OutputDebugStringA
AcquireSRWLockShared
ReleaseSRWLockShared
DebugBreak
InterlockedDecrement
InterlockedIncrement
InitializeSRWLock
AcquireSRWLockExclusive
InitializeCriticalSection
DisableThreadLibraryCalls
GetModuleHandleA
GetProcAddress
GetModuleFileNameW
GetLastError
DeleteCriticalSection
RaiseException
LocalFree
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
ReleaseSRWLockExclusive

user32

UnregisterClassA

advapi32

EventWrite
EventUnregister
EventRegister
AllocateLocallyUniqueId

Exports

Exports

D3D10CoreCreateDevice1
D3D10CoreGetSupportedVersions
D3D10CoreGetVersion
D3D10CoreRegisterLayers
D3DKMTCloseAdapter
D3DKMTCreateAllocation
D3DKMTCreateContext
D3DKMTCreateDevice
D3DKMTCreateSynchronizationObject
D3DKMTDestroyAllocation
D3DKMTDestroyContext
D3DKMTDestroyDevice
D3DKMTDestroySynchronizationObject
D3DKMTEscape
D3DKMTGetContextSchedulingPriority
D3DKMTGetDeviceState
D3DKMTGetDisplayModeList
D3DKMTGetMultisampleMethodList
D3DKMTGetRuntimeData
D3DKMTGetSharedPrimaryHandle
D3DKMTLock
D3DKMTOpenAdapterFromHdc
D3DKMTOpenResource
D3DKMTPresent
D3DKMTQueryAdapterInfo
D3DKMTQueryAllocationResidency
D3DKMTQueryResourceInfo
D3DKMTRender
D3DKMTSetAllocationPriority
D3DKMTSetContextSchedulingPriority
D3DKMTSetDisplayMode
D3DKMTSetDisplayPrivateDriverFormat
D3DKMTSetGammaRamp
D3DKMTSetVidPnSourceOwner
D3DKMTSignalSynchronizationObject
D3DKMTUnlock
D3DKMTWaitForSynchronizationObject
D3DKMTWaitForVerticalBlankEvent
OpenAdapter10
OpenAdapter10_2

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text_hf
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text_hf
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e5a68531f48eb45dc7be5a122d90fc6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

dxgi

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 168KB - Virtual size: 167KB

.text_hf Size: 25KB - Virtual size: 24KB

.text_hf Size: 7KB - Virtual size: 7KB

.data Size: 1KB - Virtual size: 6KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 19KB - Virtual size: 19KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 168KB - Virtual size: 167KB

.text_hf
Size: 25KB - Virtual size: 24KB

.text_hf
Size: 7KB - Virtual size: 7KB

.data
Size: 1KB - Virtual size: 6KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 19KB - Virtual size: 19KB

.reloc
Size: 19KB - Virtual size: 18KB