73c6b30371f4e9d37a0959b4d9d1f1f0a8ae3c6d54ede0f65a1877f0cf7b3950

Sharing

Copy URL Twitter E-mail

General

Target

73c6b30371f4e9d37a0959b4d9d1f1f0a8ae3c6d54ede0f65a1877f0cf7b3950
Size

213KB
MD5

63e2f99531d31d12017b4cb430ff9c7d
SHA1

f051c8b29ba58f762f930824bf1407977318a2d0
SHA256

73c6b30371f4e9d37a0959b4d9d1f1f0a8ae3c6d54ede0f65a1877f0cf7b3950
SHA512

b0b41c28e004c0830780f6d68da82c11e4e9d49327c7d37dd5c9b1fe057fb606bea8bc56bb000c9ec7005954eb5f4d3736f71f18de894a7e6ec7e3cae9731b44
SSDEEP

3072:Vr9HeLbBf9+Z5tNBszJJayZECUp1jR4VhFPSl0EGYIx/4SUnWDjykigMUnVat:e4xUaVpXnl0Zx/4hWVat

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73c6b30371f4e9d37a0959b4d9d1f1f0a8ae3c6d54ede0f65a1877f0cf7b3950

Files

73c6b30371f4e9d37a0959b4d9d1f1f0a8ae3c6d54ede0f65a1877f0cf7b3950
.dll windows:6 windows x86 arch:x86

7f5b828e9b119c377281246d562cb64e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\qb\workspace\21461\source\output\dump32\d3dext\igfx_ext_dll\Release\igdext32.pdb

Imports

kernel32

OutputDebugStringW
CreateFileW
DecodePointer
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryAcquireSRWLockExclusive
GetCurrentThreadId
QueryPerformanceCounter
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
InitializeSListHead
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
GetStdHandle
GetFileType
LCMapStringW
SetFilePointerEx
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStringTypeW
SetStdHandle
FlushFileBuffers
WriteFile
GetConsoleOutputCP
GetConsoleMode
HeapSize
HeapReAlloc
CloseHandle
WriteConsoleW

dxgi

CreateDXGIFactory2

Exports

Exports

D3D11CreateDeviceExtensionContext
D3D11CreateDeviceExtensionContext1
D3D11CreateDeviceExtensionContext2
D3D11CreateDeviceExtensionContextInternal
D3D11D3D12CreateDeviceExtensionContext2
D3D11D3D12CreateDeviceExtensionContextInternal
D3D11D3D12DestroyDeviceExtensionContext2
D3D11DestroyDeviceExtensionContext
D3D11EnumInternalExtensions
D3D11GetSupportedVersions
D3D11GetSupportedVersions2
D3D12CreateDeviceExtensionContext
D3D12CreateDeviceExtensionContext2
D3D12CreateDeviceExtensionContextInternal
D3D12DestroyDeviceExtensionContext
D3D12EnumInternalExtensions
D3D12GetSupportedVersions
D3D12GetSupportedVersions2
_INTC_CreateDeviceExtensionContext
_INTC_D3D11_BeginUAVOverlap
_INTC_D3D11_CreateDeviceExtensionContext
_INTC_D3D11_CreateTexture2D
_INTC_D3D11_EndUAVOverlap
_INTC_D3D11_INT_CreateDeviceExtensionContext
_INTC_D3D11_MultiDrawIndexedInstancedIndirect
_INTC_D3D11_MultiDrawIndexedInstancedIndirectCountIndirect
_INTC_D3D11_MultiDrawInstancedIndirect
_INTC_D3D11_MultiDrawInstancedIndirectCountIndirect
_INTC_D3D11_SetDepthBounds
_INTC_D3D12_BuildRaytracingAccelerationStructure
_INTC_D3D12_BuildRaytracingAccelerationStructure_Host
_INTC_D3D12_CopyRaytracingAccelerationStructure_Host
_INTC_D3D12_CreateCommandQueue
_INTC_D3D12_CreateCommittedResource
_INTC_D3D12_CreateCommittedResource1
_INTC_D3D12_CreateComputePipelineState
_INTC_D3D12_CreateDeviceExtensionContext
_INTC_D3D12_CreateHeap
_INTC_D3D12_CreateHostRTASResource
_INTC_D3D12_CreatePlacedResource
_INTC_D3D12_CreateReservedResource
_INTC_D3D12_CreateStateObject
_INTC_D3D12_EmitRaytracingAccelerationStructurePostbuildInfo_Host
_INTC_D3D12_GetRaytracingAccelerationStructurePrebuildInfo
_INTC_D3D12_GetRaytracingAccelerationStructurePrebuildInfo_Host
_INTC_D3D12_GetResourceAllocationInfo
_INTC_D3D12_INT_ClearProceduralTextureView
_INTC_D3D12_INT_ClearTexelMaskView
_INTC_D3D12_INT_CopyProceduralTextureStatus
_INTC_D3D12_INT_CopyTextureRegion
_INTC_D3D12_INT_CreateCommittedResource
_INTC_D3D12_INT_CreateCommittedResource1
_INTC_D3D12_INT_CreateCommittedResource2
_INTC_D3D12_INT_CreateComputePipelineState
_INTC_D3D12_INT_CreateDeviceExtensionContext
_INTC_D3D12_INT_CreateGraphicsPipelineState
_INTC_D3D12_INT_CreateGraphicsPipelineState1
_INTC_D3D12_INT_CreateGraphicsPipelineState2
_INTC_D3D12_INT_CreateHeap
_INTC_D3D12_INT_CreatePlacedResource
_INTC_D3D12_INT_CreatePlacedResource1
_INTC_D3D12_INT_CreateProceduralTextureResourceView
_INTC_D3D12_INT_CreateRenderTargetView
_INTC_D3D12_INT_CreateReservedResource
_INTC_D3D12_INT_CreateReservedResource1
_INTC_D3D12_INT_CreateReservedResource2
_INTC_D3D12_INT_CreateSampler
_INTC_D3D12_INT_CreateShaderResourceView
_INTC_D3D12_INT_CreateTexelMaskView
_INTC_D3D12_INT_CreateUnorderedAccessView
_INTC_D3D12_INT_GetDefaultTexelMaskGranularity
_INTC_D3D12_INT_RSSetViewports
_INTC_D3D12_INT_ReserveGpuVirtualAddress
_INTC_D3D12_INT_ResolveTexelMask
_INTC_D3D12_INT_ResourceBarrier
_INTC_D3D12_INT_SetCoarsePixelSizeState
_INTC_D3D12_INT_SetProceduralTextures
_INTC_D3D12_INT_SetRootTMVs
_INTC_D3D12_QueryCpuVisibleVidmem
_INTC_D3D12_SetDriverEventMetadata
_INTC_D3D12_SetFeatureSupport
_INTC_D3D12_TransferHostRTAS
_INTC_INT_CreateDeviceExtensionContext

Sections

.text
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f5b828e9b119c377281246d562cb64e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

dxgi

Exports

Exports

Sections

.text Size: 156KB - Virtual size: 156KB

.rdata Size: 43KB - Virtual size: 43KB

.data Size: 3KB - Virtual size: 5KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 156KB - Virtual size: 156KB

.rdata
Size: 43KB - Virtual size: 43KB

.data
Size: 3KB - Virtual size: 5KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 7KB