D3DCompiler_47[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

D3DCompiler_47.dll
Size

3.6MB
MD5

352a6b59cd71544bcd6b7dd3d0bcac1d
SHA1

9108d1dd01caae1da0d728cad5145cd15b28369a
SHA256

44dab7b0f4d29e29ba3924be05f6fd5d7bfb6cd4a782f9847cca8b09cb758e50
SHA512

2f2f52f781db707b4b506b9b4c13044de4e2fe93168cbcaac8bd95723f430f84631ac4390b5fe4a4b6a0e63c80b1d8095546e7158001659d69ce8a190d777271
SSDEEP

49152:jVMaaAx58oEUvYIqUilIRH+y1CGj/8vRbu1PoQz0F4QsRu+USLBNRWJ:j+aaA8oEUQIqzk+y7LoC/NQsRu42

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
D3DCompiler_47.dll

Files

D3DCompiler_47.dll
.dll windows:10 windows x86 arch:x86

64c2814569d0679738764df90dde9547

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D3DCompiler_47.pdb

Imports

msvcrt

isxdigit
atof
strchr
setlocale
strnlen
_purecall
strtoul
__dllonexit
modf
_vsnwprintf
_mbstrlen
_strdup
tolower
_initterm
_controlfp
_finite
_fpclass
memmove
_clearfp
_unlock
strncmp
strncpy_s
_lock
??1type_info@@UAE@XZ
malloc
__isascii
_strnicmp
atoi
isdigit
strrchr
_onexit
wcsncmp
wcsncpy_s
_wcsicmp
memcpy
memset
fclose
_amsg_exit
qsort
strcat_s
strstr
_CxxThrowException
_snwprintf_s
__unDName
fread
fseek
_wfsopen
wcstoul
_fileno
sscanf_s
_filelengthi64
towlower
_wcsnicmp
_wsplitpath_s
wcscpy_s
wcsncat_s
wcsrchr
swprintf_s
_wmakepath_s
time
_wcsdup
_wgetenv
_wfullpath
_chsize_s
_close
_read
_write
_lseeki64
_get_osfhandle
_open_osfhandle
wcscat_s
ftell
_mbscmp
_memicmp
toupper
_atoi64
_errno
strtod
_strtoui64
?terminate@@YAXXZ
isalpha
_isnan
strcpy_s
memcpy_s
_except_handler4_common
_XcptFilter
bsearch
_callnewh
isalnum
getenv
free
_stricmp
sprintf_s
_vsnprintf
isspace
_wsopen
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
__CxxFrameHandler3
_ftol2
_ftol2_sse
ceil
floor

api-ms-win-core-libraryloader-l1-2-0

LoadLibraryExW
FreeLibrary
DisableThreadLibraryCalls
GetProcAddress
GetModuleFileNameA

api-ms-win-core-string-l1-1-0

MultiByteToWideChar
WideCharToMultiByte

api-ms-win-core-synch-l1-2-0

LeaveCriticalSection
EnterCriticalSection
Sleep
InitializeCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount

api-ms-win-core-debug-l1-1-1

OutputDebugStringA

api-ms-win-core-heap-l1-2-0

HeapCreate
HeapDestroy
HeapAlloc
GetProcessHeap
HeapFree

api-ms-win-core-file-l1-2-1

GetFullPathNameW
GetFullPathNameA
ReadFile
GetFileSizeEx
SetFilePointer
WriteFile
CreateFileA
SetFilePointerEx
SetEndOfFile
GetFileType
DeleteFileW
CreateFileW
SetFileAttributesW
GetFileAttributesW
GetFileSize
CreateFile2

api-ms-win-core-memory-l1-1-2

VirtualAlloc
MapViewOfFile
VirtualFree
UnmapViewOfFile
MapViewOfFileEx
FlushViewOfFile
CreateFileMappingW

api-ms-win-core-sysinfo-l1-2-1

GetSystemTimeAsFileTime
GetSystemInfo
GetTickCount

api-ms-win-core-errorhandling-l1-1-1

UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLastError
SetLastError

api-ms-win-core-handle-l1-1-0

CloseHandle

api-ms-win-core-processthreads-l1-1-2

TlsGetValue
TlsFree
TlsAlloc
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
TerminateProcess
TlsSetValue

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-heap-l2-1-0

LocalAlloc
LocalFree

api-ms-win-core-registry-l1-1-0

RegEnumKeyExA
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW
RegCloseKey

api-ms-win-core-localization-l1-2-1

LCMapStringW

api-ms-win-core-io-l1-1-1

DeviceIoControl

rpcrt4

UuidCreate

api-ms-win-core-processenvironment-l1-2-0

GetEnvironmentVariableA
ExpandEnvironmentStringsW

api-ms-win-core-string-obsolete-l1-1-0

lstrcmpiA

cryptsp

CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW

Exports

Exports

D3DAssemble
D3DCompile
D3DCompile2
D3DCompileFromFile
D3DCompressShaders
D3DCreateBlob
D3DCreateFunctionLinkingGraph
D3DCreateLinker
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DDisassemble11Trace
D3DDisassembleRegion
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DGetTraceInstructionOffsets
D3DLoadModule
D3DPreprocess
D3DReadFileToBlob
D3DReflect
D3DReflectLibrary
D3DReturnFailure1
D3DSetBlobPart
D3DStripShader
D3DWriteBlobToFile
DebugSetMute

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64c2814569d0679738764df90dde9547

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

api-ms-win-core-libraryloader-l1-2-0

api-ms-win-core-string-l1-1-0

api-ms-win-core-synch-l1-2-0

api-ms-win-core-debug-l1-1-1

api-ms-win-core-heap-l1-2-0

api-ms-win-core-file-l1-2-1

api-ms-win-core-memory-l1-1-2

api-ms-win-core-sysinfo-l1-2-1

api-ms-win-core-errorhandling-l1-1-1

api-ms-win-core-handle-l1-1-0

api-ms-win-core-processthreads-l1-1-2

api-ms-win-core-profile-l1-1-0

api-ms-win-core-heap-l2-1-0

api-ms-win-core-registry-l1-1-0

api-ms-win-core-localization-l1-2-1

api-ms-win-core-io-l1-1-1

rpcrt4

api-ms-win-core-processenvironment-l1-2-0

api-ms-win-core-string-obsolete-l1-1-0

cryptsp

Exports

Exports

Sections

.text Size: 3.4MB - Virtual size: 3.4MB

.data Size: 25KB - Virtual size: 57KB

.idata Size: 6KB - Virtual size: 5KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 124KB - Virtual size: 124KB

.text
Size: 3.4MB - Virtual size: 3.4MB

.data
Size: 25KB - Virtual size: 57KB

.idata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 124KB - Virtual size: 124KB