OpenNI2[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

OpenNI2.dll
Size

285KB
MD5

8fca3241d6a48cc9911a9579a6c37538
SHA1

13ea32f829b309fdda954736df00074450cc4947
SHA256

a999e7f9abdc8645aa8ba59d6433c607224c145e82b8812f6c726cce582386e0
SHA512

d50c3ef41be8d7c3480faf35fe73945dc38e904486044cc9341eee64d09b2e1aafd6aa0869dbbd9b186a1421be8204baf3b89019bcad5d1f3980a4e35d0951d4
SSDEEP

6144:YBu9qol1HffhPruSXKJtMA4j5fRU6Yd76zT23Sl5wU//L6HepKxr2RW1V+c/Olzh:YGtA05fRxYd76zT23Sl5wU//L6HepKxQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
OpenNI2.dll

Files

OpenNI2.dll
.dll windows:5 windows x64 arch:x64

663d46889a5a8b97953bea6e60174f55

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\tool.lab\outputs\OpenNI2\win64\Bin\x64-Release\OpenNI2.pdb

Imports

kernel32

GetLastError
GetFullPathNameA
CreateFileA
SetEndOfFile
SetFilePointerEx
WriteFile
GetFileAttributesA
CreateDirectoryA
SetCurrentDirectoryA
FindFirstFileA
FindClose
FindNextFileA
GetCurrentDirectoryA
CloseHandle
GetModuleHandleExA
SetErrorMode
FreeLibrary
GetProcAddress
GetModuleFileNameA
QueryPerformanceCounter
Sleep
QueryPerformanceFrequency
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
WaitForSingleObject
SetEvent
CreateEventA
GetPrivateProfileStringA
TerminateThread
OpenThread
GetCurrentThreadId
CreateThread
GetCurrentProcessId
DecodePointer
EncodePointer
GetTickCount
LoadLibraryExA
GetSystemTimeAsFileTime

msvcr100

_setjmp
sprintf
__iob_func
fprintf
free
malloc
longjmp
??_U@YAPEAX_K@Z
_wassert
??_V@YAXPEAX@Z
??3@YAXPEAX@Z
??2@YAPEAX_K@Z
strncpy
_purecall
_aligned_free
_aligned_malloc
strftime
_localtime64
_time64
strncat
_access
isalpha
_splitpath_s
strchr
atoi
printf
?terminate@@YAXXZ
__C_specific_handler
_unlock
__dllonexit
_lock
_onexit
_malloc_crt
_initterm
_initterm_e
_encoded_null
_amsg_exit
__CppXcptFilter
_vsnprintf
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
__clean_type_info_names_internal
memcpy
tanf
__CxxFrameHandler3
memset

Exports

Exports

oniCoordinateConverterDepthToColor
oniCoordinateConverterDepthToWorld
oniCoordinateConverterWorldToDepth
oniCreateRecorder
oniDeviceClose
oniDeviceCreateStream
oniDeviceDisableDepthColorSync
oniDeviceEnableDepthColorSync
oniDeviceGetDepthColorSyncEnabled
oniDeviceGetInfo
oniDeviceGetProperty
oniDeviceGetSensorInfo
oniDeviceInvoke
oniDeviceIsCommandSupported
oniDeviceIsImageRegistrationModeSupported
oniDeviceIsPropertySupported
oniDeviceOpen
oniDeviceOpenEx
oniDeviceSetProperty
oniFormatBytesPerPixel
oniFrameAddRef
oniFrameRelease
oniGetDeviceList
oniGetExtendedError
oniGetLogFileName
oniGetVersion
oniInitialize
oniRecorderAttachStream
oniRecorderDestroy
oniRecorderStart
oniRecorderStop
oniRegisterDeviceCallbacks
oniReleaseDeviceList
oniSetLogConsoleOutput
oniSetLogFileOutput
oniSetLogMinSeverity
oniSetLogOutputFolder
oniShutdown
oniStreamDestroy
oniStreamGetProperty
oniStreamGetSensorInfo
oniStreamInvoke
oniStreamIsCommandSupported
oniStreamIsPropertySupported
oniStreamReadFrame
oniStreamRegisterNewFrameCallback
oniStreamSetFrameBuffersAllocator
oniStreamSetProperty
oniStreamStart
oniStreamStop
oniStreamUnregisterNewFrameCallback
oniUnregisterDeviceCallbacks
oniWaitForAnyStream
oniWriteLogEntry

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

663d46889a5a8b97953bea6e60174f55

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

msvcr100

Exports

Exports

Sections

.text Size: 196KB - Virtual size: 195KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 6KB - Virtual size: 139KB

.pdata Size: 14KB - Virtual size: 13KB

.rsrc Size: 12KB - Virtual size: 11KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 196KB - Virtual size: 195KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 6KB - Virtual size: 139KB

.pdata
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 2KB - Virtual size: 1KB