d3d10warp[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

d3d10warp.dll
Size

1.9MB
MD5

a8ae41536897159ab4695ea46ad7aa51
SHA1

49b3957b459d1f78efb8fba96cb4fee233150ec0
SHA256

ebba6c6d588a5ff9f4b7f2140a58e3bc0d95ee486e8fb3e5e4446db71d80dad3
SHA512

4f6df012897905d51a17bf14af91c35c2d6626b1796175def45fb21355b1e78ff4d64100a693774a499ce6c80c3f88baf7045badf8187af36eb65b21a9e1dcb1
SSDEEP

49152:zxmpt5jAWppl/DQ9tnJQa2GgVLRBWgZmkbBcyzT9:z0pvAqDQ9tnH+VLRBWgdBJ9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3d10warp.dll

Files

d3d10warp.dll
.dll windows:6 windows x86 arch:x86

aeb289f504fd488966cbaeef5750857b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d3d10warp.pdb

Imports

msvcrt

_except_handler4_common
malloc
free
_amsg_exit
??3@YAXPAX@Z
_splitpath_s
_stricmp
_purecall
_finite
wcscat_s
memcpy_s
qsort_s
ceil
vsprintf_s
_initterm
_XcptFilter
memcpy
memcmp
floor
_ftol2_sse
_CIsqrt
_CIexp
_CIpow
memset

kernel32

EnterCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
Sleep
InterlockedExchange
InterlockedCompareExchange
QueryPerformanceCounter
LeaveCriticalSection
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InitializeCriticalSection
CreateThreadpool
SetThreadpoolThreadMaximum
SetThreadpoolThreadMinimum
WaitForThreadpoolWorkCallbacks
CloseThreadpoolWork
CloseThreadpool
SwitchToThread
SubmitThreadpoolWork
GetProcessHeap
MultiByteToWideChar
GetCurrentProcessId
CreateFileMappingW
CreateThreadpoolWork
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
FlushInstructionCache
VirtualProtect
ResetEvent
InterlockedDecrement
lstrcmpW
GetSystemInfo
GetModuleFileNameA
GetModuleHandleA
SetEvent
WaitForSingleObject
CloseHandle
CreateEventA
RtlCaptureStackBackTrace
InterlockedIncrement
UnmapViewOfFile
MapViewOfFile
IsDebuggerPresent
VirtualFree
QueryPerformanceFrequency
VirtualAlloc
GetModuleFileNameW
GlobalMemoryStatusEx
InterlockedExchangeAdd
CreateThread
HeapAlloc
InitializeCriticalSectionAndSpinCount
HeapFree

gdi32

StretchBlt
SetStretchBltMode
BitBlt
SetLayout
GetLayout
GetDeviceCaps
D3DKMTDestroyDCFromMemory
DeleteDC
D3DKMTCreateDCFromMemory
CreateDCW
GdiFlush
PlgBlt

user32

EnumDisplaySettingsExW
CloseDesktop
EnumDisplaySettingsW
GetClientRect
GetWindowLongA
SetThreadDesktop
GetThreadDesktop
ReleaseDC
GetDC
GetSystemMetrics
GetMonitorInfoW
EnumDisplayMonitors
EnumDisplayDevicesW
OpenInputDesktop

ntdll

EtwEventUnregister
EtwEventRegister
NtSetTimerResolution
EtwEventWrite

Exports

Exports

D3D10RefGetLastCreation
D3DKMTCloseAdapter
D3DKMTCreateAllocation
D3DKMTCreateContext
D3DKMTCreateDevice
D3DKMTCreateSynchronizationObject
D3DKMTDestroyAllocation
D3DKMTDestroyContext
D3DKMTDestroyDevice
D3DKMTDestroySynchronizationObject
D3DKMTEscape
D3DKMTGetContextSchedulingPriority
D3DKMTGetDeviceSchedulingPriority
D3DKMTGetDeviceState
D3DKMTGetDisplayModeList
D3DKMTGetMultisampleMethodList
D3DKMTGetRuntimeData
D3DKMTGetSharedPrimaryHandle
D3DKMTLock
D3DKMTOpenAdapterFromDeviceName
D3DKMTOpenAdapterFromGdiDisplayName
D3DKMTOpenResource
D3DKMTPresent
D3DKMTQueryAdapterInfo
D3DKMTQueryAllocationResidency
D3DKMTQueryResourceInfo
D3DKMTRender
D3DKMTSetAllocationPriority
D3DKMTSetContextSchedulingPriority
D3DKMTSetDeviceSchedulingPriority
D3DKMTSetDisplayMode
D3DKMTSetDisplayPrivateDriverFormat
D3DKMTSetGammaRamp
D3DKMTSetVidPnSourceOwner
D3DKMTSignalSynchronizationObject
D3DKMTUnlock
D3DKMTWaitForSynchronizationObject
D3DKMTWaitForVerticalBlankEvent
OpenAdapter10_2
SetInfoQueue

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aeb289f504fd488966cbaeef5750857b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

gdi32

user32

ntdll

Exports

Exports

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.data Size: 17KB - Virtual size: 22KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 1024B

.reloc Size: 34KB - Virtual size: 34KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.data
Size: 17KB - Virtual size: 22KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 34KB - Virtual size: 34KB