d3d10.pdb
Static task
static1
Behavioral task
behavioral1
Sample
d3d10.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d3d10.dll
Resource
win10v2004-20240508-en
General
-
Target
d3d10.dll
-
Size
1.2MB
-
MD5
00dd973cc5eac02e4246f4d861457d01
-
SHA1
5f3278549b74eaba17d4d33cfd4cdd1a61161b9c
-
SHA256
b4655e7cbc7e924219b8ae9a18d359368405d0c9127d0a3ae8d344f425f6b8b0
-
SHA512
eeda631e118f5e082346d8e4a38c2146656697f211d0f2acf111405d22f7ac52a29d496ab3382e13922d4c77b21a14967101fe99debc2ada4069bdfa380e97b7
-
SSDEEP
24576:Me6Lj3ic+Mlw2QLFE6BXw+APrR1YdntmUPC0RLqL6XbRCZD:16Lj3ic+MlSDaR1YdntmUaKLrrEp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d3d10.dll
Files
-
d3d10.dll.dll windows:6 windows x64 arch:x64
35f2226f650f345298ce222be42549d0
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
d3d10core
D3D10CoreRegisterLayers
D3D10CoreCreateDevice
D3D10CoreGetVersion
msvcrt
sqrt
sinh
??1type_info@@UEAA@XZ
__C_specific_handler
sqrtf
_amsg_exit
_XcptFilter
strstr
malloc
modf
_purecall
memmove
isalnum
isxdigit
tan
strcmp
_initterm
strchr
atof
free
setlocale
_strdup
_strnicmp
_fpclass
_isnan
_stricmp
isalpha
atoi
isdigit
tolower
_finite
tanh
_clearfp
_controlfp
??2@YAPEAX_K@Z
??3@YAXPEAX@Z
_vsnprintf
_CxxThrowException
__CxxFrameHandler3
acos
acosf
asin
asinf
atan
atan2
atan2f
atanf
ceil
ceilf
cos
cosf
cosh
exp
floor
floorf
fmod
log
logf
memcmp
memcpy
memset
pow
powf
sin
sinf
ntdll
WinSqmAddToStreamEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
WinSqmIsOptedIn
api-ms-win-core-libraryloader-l1-2-0
FreeLibrary
LoadLibraryExW
DisableThreadLibraryCalls
GetProcAddress
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleExW
api-ms-win-core-registry-l1-1-0
RegOpenKeyExA
RegCloseKey
RegOpenKeyExW
RegEnumKeyExA
RegGetValueW
RegQueryValueExA
api-ms-win-core-string-l1-1-0
MultiByteToWideChar
api-ms-win-core-debug-l1-1-1
OutputDebugStringA
api-ms-win-core-synch-l1-2-0
Sleep
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
OpenSemaphoreW
EnterCriticalSection
api-ms-win-core-handle-l1-1-0
CloseHandle
api-ms-win-core-file-l1-2-1
GetFullPathNameA
CreateFileA
GetFileSize
api-ms-win-core-errorhandling-l1-1-1
UnhandledExceptionFilter
SetUnhandledExceptionFilter
api-ms-win-core-processthreads-l1-1-2
GetCurrentProcessId
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
api-ms-win-core-profile-l1-1-0
QueryPerformanceCounter
api-ms-win-core-sysinfo-l1-2-1
GetSystemTimeAsFileTime
GetTickCount
GetSystemInfo
dxgi
CreateDXGIFactory
d3d11
D3D11CreateDeviceAndSwapChain
api-ms-win-core-memory-l1-1-2
UnmapViewOfFile
VirtualFree
VirtualAlloc
gdi32
DeleteObject
Exports
Exports
D3D10CompileEffectFromMemory
D3D10CompileShader
D3D10CreateBlob
D3D10CreateDevice
D3D10CreateDeviceAndSwapChain
D3D10CreateEffectFromMemory
D3D10CreateEffectPoolFromMemory
D3D10CreateStateBlock
D3D10DisassembleEffect
D3D10DisassembleShader
D3D10GetGeometryShaderProfile
D3D10GetInputAndOutputSignatureBlob
D3D10GetInputSignatureBlob
D3D10GetOutputSignatureBlob
D3D10GetPixelShaderProfile
D3D10GetShaderDebugInfo
D3D10GetVersion
D3D10GetVertexShaderProfile
D3D10PreprocessShader
D3D10ReflectShader
D3D10RegisterLayers
D3D10StateBlockMaskDifference
D3D10StateBlockMaskDisableAll
D3D10StateBlockMaskDisableCapture
D3D10StateBlockMaskEnableAll
D3D10StateBlockMaskEnableCapture
D3D10StateBlockMaskGetSetting
D3D10StateBlockMaskIntersect
D3D10StateBlockMaskUnion
RevertToOldImplementation
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 1000B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ