us[.]nvngx[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

us.nvngx.dll
Size

71KB
MD5

7208704dc04fbb77f9aa8e0d1801a13b
SHA1

339df020b87e7d33c2c5e3b3a680b267fc19e07a
SHA256

5695946b93090d80d700e7cd3df5205befdf85701b3cedf7d547b2dcc322be38
SHA512

f6b67d2f36f779bb39e1893275909eeed92a886ca8c5ee041a7dc01d5ce951820cb33d8a6172576b855ceac581332725c581cc12d49f6081acd6812f70871a3d
SSDEEP

1536:lGv8NnWUqz+mA6Q54z02sH5U9wLRJ1fKKVVQreGB/NO:lGrU/6Q5iTmfNKV/N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
us.nvngx.dll

Files

us.nvngx.dll
.dll windows:6 windows x64 arch:x64

fd717b0da086d0ba057eabce8c7dc26d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

P:\cpp\FSR2Streamline\x64\Release\nvngx.pdb

Imports

kernel32

FormatMessageW
GetCurrentThreadId
GetProcessHeap
HeapAlloc
GetModuleHandleW
GetProcAddress
HeapFree
GetModuleHandleExW
GetModuleFileNameA
DebugBreak
GetLastError
WideCharToMultiByte
IsDebuggerPresent
OutputDebugStringW
SetLastError
CloseHandle
ReleaseSemaphore
ReleaseMutex
WaitForSingleObjectEx
EnterCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
WaitForSingleObject
OpenSemaphoreW
LoadLibraryW
GetCurrentProcessId
CreateMutexExW
CreateSemaphoreExW
LeaveCriticalSection
K32GetModuleFileNameExW
GetModuleFileNameW
GetLocaleInfoEx
FormatMessageA
LocalFree
AreFileApisANSI
MultiByteToWideChar
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead

msvcp140

??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
?_Xlength_error@std@@YAXPEBD@Z
?_Syserror_map@std@@YAPEBDH@Z
?_Winerror_map@std@@YAHH@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
??Bid@locale@std@@QEAA_KXZ
?_Getcat@?$ctype@_W@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?good@ios_base@std@@QEBA_NXZ
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?widen@?$ctype@_W@std@@QEBA_WD@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
?uncaught_exceptions@std@@YAHXZ
?id@?$ctype@_W@std@@2V0locale@2@A
?wcout@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A
?_Xout_of_range@std@@YAXPEBD@Z

vcruntime140_1

__CxxFrameHandler4

vcruntime140

memmove
__std_terminate
__std_exception_copy
__std_exception_destroy
_purecall
__C_specific_handler
_CxxThrowException
memset
__std_type_info_destroy_list
memcmp
memcpy

api-ms-win-crt-heap-l1-1-0

free
malloc
_callnewh

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswprintf

api-ms-win-crt-runtime-l1-1-0

_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_execute_onexit_table
_crt_atexit
_cexit
_initterm
_invalid_parameter_noinfo
_errno
_invalid_parameter_noinfo_noreturn
_initterm_e
_seh_filter_dll

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func

api-ms-win-crt-math-l1-1-0

ceilf

Exports

Exports

NVSDK_NGX_CUDA_AllocateParameters
NVSDK_NGX_CUDA_CreateFeature
NVSDK_NGX_CUDA_DestroyParameters
NVSDK_NGX_CUDA_EvaluateFeature
NVSDK_NGX_CUDA_EvaluateFeature_C
NVSDK_NGX_CUDA_GetCapabilityParameters
NVSDK_NGX_CUDA_GetParameters
NVSDK_NGX_CUDA_GetScratchBufferSize
NVSDK_NGX_CUDA_Init
NVSDK_NGX_CUDA_Init_Ext
NVSDK_NGX_CUDA_Init_ProjectID
NVSDK_NGX_CUDA_ReleaseFeature
NVSDK_NGX_CUDA_Shutdown
NVSDK_NGX_D3D11_AllocateParameters
NVSDK_NGX_D3D11_CreateFeature
NVSDK_NGX_D3D11_DestroyParameters
NVSDK_NGX_D3D11_EvaluateFeature
NVSDK_NGX_D3D11_EvaluateFeature_C
NVSDK_NGX_D3D11_GetCapabilityParameters
NVSDK_NGX_D3D11_GetFeatureRequirements
NVSDK_NGX_D3D11_GetParameters
NVSDK_NGX_D3D11_GetScratchBufferSize
NVSDK_NGX_D3D11_Init
NVSDK_NGX_D3D11_Init_Ext
NVSDK_NGX_D3D11_Init_ProjectID
NVSDK_NGX_D3D11_ReleaseFeature
NVSDK_NGX_D3D11_Shutdown
NVSDK_NGX_D3D11_Shutdown1
NVSDK_NGX_D3D12_AllocateParameters
NVSDK_NGX_D3D12_CreateFeature
NVSDK_NGX_D3D12_DestroyParameters
NVSDK_NGX_D3D12_EvaluateFeature
NVSDK_NGX_D3D12_EvaluateFeature_C
NVSDK_NGX_D3D12_GetCapabilityParameters
NVSDK_NGX_D3D12_GetFeatureRequirements
NVSDK_NGX_D3D12_GetParameters
NVSDK_NGX_D3D12_GetScratchBufferSize
NVSDK_NGX_D3D12_Init
NVSDK_NGX_D3D12_Init_Ext
NVSDK_NGX_D3D12_Init_ProjectID
NVSDK_NGX_D3D12_ReleaseFeature
NVSDK_NGX_D3D12_Shutdown
NVSDK_NGX_D3D12_Shutdown1
NVSDK_NGX_UpdateFeature

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd717b0da086d0ba057eabce8c7dc26d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

msvcp140

vcruntime140_1

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 1KB - Virtual size: 3KB

.pdata Size: 3KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 248B

.reloc Size: 512B - Virtual size: 260B

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 1KB - Virtual size: 3KB

.pdata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 248B

.reloc
Size: 512B - Virtual size: 260B