OpenRazer64[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

OpenRazer64.dll
Size

229KB
MD5

0e18430c46c4ba7300ebe1fb332221db
SHA1

7c6e8f1b1b433b946ae545c8529b40f4fa898e38
SHA256

92eed0b493b66d9bbc44afd27f8fbaec853c4486e7ff1571e2533e10028f0f41
SHA512

0a08fa670b0de166e6a7fb69acc9e273bfa7ae6438254d80214c3bdd21f164bd2dfe9b9f543ffde59a2eaa823ef67808e1458ba9c188b816b68c2fc8812a4eee
SSDEEP

3072:DqedQanoZw8aQ0GThzdgIRTRvjQPFSQAx9rL6cootEWDQYoICAZHzSYk0y/Z1Gka:WAQiaDcj5zI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
OpenRazer64.dll

Files

OpenRazer64.dll
.dll windows:6 windows x64 arch:x64

2f4393345682c15d278864b2e7f84e51

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\git\openrazer-win32\OpenRazer64.pdb

Imports

kernel32

WaitForSingleObject
EnterCriticalSection
CreateWaitableTimerA
TryEnterCriticalSection
GetStartupInfoW
InitializeCriticalSection
SetWaitableTimer
LeaveCriticalSection
CloseHandle
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetModuleHandleW

advapi32

CryptAcquireContextA
CryptGenRandom

hidapi

hid_get_feature_report
hid_read
hid_write
hid_open_path
hid_enumerate
hid_init
hid_send_feature_report

vcruntime140

__current_exception_context
__C_specific_handler
__std_type_info_destroy_list
memcpy
memset
__current_exception

api-ms-win-crt-string-l1-1-0

strncpy

api-ms-win-crt-heap-l1-1-0

malloc
free
realloc

api-ms-win-crt-convert-l1-1-0

strtoul

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vsprintf
__stdio_common_vfprintf

api-ms-win-crt-runtime-l1-1-0

_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
terminate
_initterm
_register_onexit_function
_initialize_onexit_table
_initterm_e
_seh_filter_dll
_initialize_narrow_environment
_configure_narrow_argv

Exports

Exports

devaccessory_attr_device_mode
devaccessory_attr_device_serial
devaccessory_attr_device_type
devaccessory_attr_firmware_version
devaccessory_attr_is_mug_present
devaccessory_attr_matrix_brightness
devaccessory_attr_matrix_custom_frame
devaccessory_attr_matrix_effect_blinking
devaccessory_attr_matrix_effect_breath
devaccessory_attr_matrix_effect_custom
devaccessory_attr_matrix_effect_none
devaccessory_attr_matrix_effect_reactive
devaccessory_attr_matrix_effect_spectrum
devaccessory_attr_matrix_effect_static
devaccessory_attr_matrix_effect_wave
devaccessory_attr_matrix_reactive_trigger
devaccessory_attr_test
devaccessory_attr_version
devkbd_attr_device_mode
devkbd_attr_device_serial
devkbd_attr_device_type
devkbd_attr_firmware_version
devkbd_attr_fn_toggle
devkbd_attr_game_led_state
devkbd_attr_kbd_layout
devkbd_attr_key_alt_f4
devkbd_attr_key_alt_tab
devkbd_attr_key_super
devkbd_attr_logo_led_state
devkbd_attr_macro_led_effect
devkbd_attr_macro_led_state
devkbd_attr_matrix_brightness
devkbd_attr_matrix_custom_frame
devkbd_attr_matrix_effect_breath
devkbd_attr_matrix_effect_custom
devkbd_attr_matrix_effect_none
devkbd_attr_matrix_effect_pulsate
devkbd_attr_matrix_effect_reactive
devkbd_attr_matrix_effect_spectrum
devkbd_attr_matrix_effect_starlight
devkbd_attr_matrix_effect_static
devkbd_attr_matrix_effect_wave
devkbd_attr_profile_led_blue
devkbd_attr_profile_led_green
devkbd_attr_profile_led_red
devkbd_attr_test
devkbd_attr_version
devkraken_attr_device_mode
devkraken_attr_device_serial
devkraken_attr_device_type
devkraken_attr_firmware_version
devkraken_attr_matrix_current_effect
devkraken_attr_matrix_effect_breath
devkraken_attr_matrix_effect_custom
devkraken_attr_matrix_effect_none
devkraken_attr_matrix_effect_spectrum
devkraken_attr_matrix_effect_static
devkraken_attr_test
devkraken_attr_version
devmouse_attr_backlight_led_state
devmouse_attr_charge_colour
devmouse_attr_charge_effect
devmouse_attr_charge_level
devmouse_attr_charge_low_threshold
devmouse_attr_charge_status
devmouse_attr_device_idle_time
devmouse_attr_device_mode
devmouse_attr_device_serial
devmouse_attr_device_type
devmouse_attr_dpi
devmouse_attr_dpi_stages
devmouse_attr_firmware_version
devmouse_attr_left_led_brightness
devmouse_attr_left_matrix_effect_breath
devmouse_attr_left_matrix_effect_none
devmouse_attr_left_matrix_effect_reactive
devmouse_attr_left_matrix_effect_spectrum
devmouse_attr_left_matrix_effect_static
devmouse_attr_left_matrix_effect_wave
devmouse_attr_logo_led_brightness
devmouse_attr_logo_led_effect
devmouse_attr_logo_led_rgb
devmouse_attr_logo_led_state
devmouse_attr_logo_matrix_effect_breath
devmouse_attr_logo_matrix_effect_none
devmouse_attr_logo_matrix_effect_reactive
devmouse_attr_logo_matrix_effect_spectrum
devmouse_attr_logo_matrix_effect_static
devmouse_attr_logo_matrix_effect_wave
devmouse_attr_matrix_brightness
devmouse_attr_matrix_custom_frame
devmouse_attr_matrix_effect_breath
devmouse_attr_matrix_effect_custom
devmouse_attr_matrix_effect_none
devmouse_attr_matrix_effect_reactive
devmouse_attr_matrix_effect_spectrum
devmouse_attr_matrix_effect_static
devmouse_attr_matrix_effect_wave
devmouse_attr_poll_rate
devmouse_attr_right_led_brightness
devmouse_attr_right_matrix_effect_breath
devmouse_attr_right_matrix_effect_none
devmouse_attr_right_matrix_effect_reactive
devmouse_attr_right_matrix_effect_spectrum
devmouse_attr_right_matrix_effect_static
devmouse_attr_right_matrix_effect_wave
devmouse_attr_scroll_led_brightness
devmouse_attr_scroll_led_effect
devmouse_attr_scroll_led_rgb
devmouse_attr_scroll_led_state
devmouse_attr_scroll_matrix_effect_breath
devmouse_attr_scroll_matrix_effect_none
devmouse_attr_scroll_matrix_effect_reactive
devmouse_attr_scroll_matrix_effect_spectrum
devmouse_attr_scroll_matrix_effect_static
devmouse_attr_scroll_matrix_effect_wave
devmouse_attr_test
devmouse_attr_tilt_hwheel
devmouse_attr_tilt_repeat
devmouse_attr_tilt_repeat_delay
devmouse_attr_version
init_razer_accessory_driver
init_razer_kbd_driver
init_razer_kraken_driver
init_razer_mouse_driver

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 337B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f4393345682c15d278864b2e7f84e51

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

advapi32

hidapi

vcruntime140

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

Exports

Exports

Sections

.text Size: 170KB - Virtual size: 169KB

.rdata Size: 35KB - Virtual size: 34KB

.data Size: 8KB - Virtual size: 9KB

.pdata Size: 5KB - Virtual size: 5KB

.idata Size: 5KB - Virtual size: 4KB

.00cfg Size: 512B - Virtual size: 337B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 170KB - Virtual size: 169KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 8KB - Virtual size: 9KB

.pdata
Size: 5KB - Virtual size: 5KB

.idata
Size: 5KB - Virtual size: 4KB

.00cfg
Size: 512B - Virtual size: 337B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB