Magnification[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

Magnification.dll
Size

39KB
MD5

3c751300f0f83fc4031b30bfd4e56b31
SHA1

b21687f152e7886858627ccf8ee88dd1b72b1604
SHA256

02ef49eb14f73160d75417a64ab4844ece85010e6968671ddc41932088e2cdda
SHA512

7f7d758af3a0b077b6acc0b014b01b19e46b24c3e94305e5c435c598ccc15cc862e2433003ce44577ba76ac6697535348c362dc31cfb682177446fb19ef3fcee
SSDEEP

768:1gTWnWmCnNHpZJbwxWrcj5WoSHD6pbIfPA:zWmMHpbgWI1vSHD6xIfI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Magnification.dll

Files

Magnification.dll
.dll windows:6 windows x86 arch:x86

605981e75ff5adba629805e489b73eab

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Magnification.pdb

Imports

msvcrt

_amsg_exit
_initterm
_stricmp
_vsnwprintf
memset
__CxxFrameHandler3
memmove
memcpy
_ftol2
??2@YAPAXI@Z
??3@YAXPAX@Z
_XcptFilter
malloc
free
_except_handler4_common
_ftol2_sse
_wcsicmp

ntdll

RtlImageNtHeader
ord1

kernel32

GetCurrentThreadId
InterlockedDecrement
SetLastError
HeapFree
GetProcessHeap
Sleep
GetModuleHandleW
HeapReAlloc
InitializeCriticalSection
InterlockedIncrement
CloseHandle
UnmapViewOfFile
EnterCriticalSection
LeaveCriticalSection
OpenEventW
DeleteCriticalSection
MapViewOfFile
InterlockedExchange
InterlockedCompareExchange
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLastError
HeapAlloc

user32

SetMagnificationLensCtxInformation
UnregisterClassW
CloseDesktop
GetUserObjectInformationW
GetThreadDesktop
GetWindowLongW
SetMirrorRendering
GetAncestor
MapWindowPoints
GetPhysicalCursorPos
DrawIcon
GetIconInfo
GetCursorInfo
ReleaseDC
GetClientRect
GetDC
SetWindowLongW
SetTimer
PostQuitMessage
SetWindowPos
ControlMagnification
IsIconic
IsWindowVisible
BeginPaint
DestroyWindow
KillTimer
DefWindowProcW
RegisterClassW
LoadCursorW
FillRect
GetWindowRect
GetMonitorInfoA
OffsetRect
IntersectRect
GetMagnificationLensCtxInformation
EnumDisplayMonitors
GetParent
GetSystemMetrics
GetWindowInfo
ord1550
ord1552
CreateWindowExW
IsThreadDesktopComposited
SendMessageW
EndPaint

gdi32

CreateCompatibleBitmap
GetObjectW
GetBitmapBits
GdiEntry13
ord1005
CreateRectRgn
SelectClipRgn
ExcludeClipRect
CreateSolidBrush
CreateCompatibleDC
SelectObject
IntersectClipRect
PlgBlt
DeleteDC
BitBlt
DeleteObject

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey
EventWrite
EventUnregister
EventRegister

wtsapi32

WTSUnRegisterSessionNotification
WTSRegisterSessionNotification

gdiplus

GdiplusStartup
GdipCloneImage
GdipDrawImageRectRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipSetImageAttributesColorMatrix
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipAlloc
GdipFree
GdiplusShutdown

d3d9

Direct3DCreate9Ex

dwmapi

ord134
ord132
ord133
ord100

Exports

Exports

MagGetColorEffect
MagGetImageScalingCallback
MagGetWindowFilterList
MagGetWindowSource
MagGetWindowTransform
MagInitialize
MagSetColorEffect
MagSetImageScalingCallback
MagSetWindowFilterList
MagSetWindowSource
MagSetWindowTransform
MagUninitialize

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

605981e75ff5adba629805e489b73eab

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

ntdll

kernel32

user32

gdi32

advapi32

wtsapi32

gdiplus

d3d9

dwmapi

Exports

Exports

Sections

.text Size: 29KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 2KB - Virtual size: 1KB