home

d3d9.dll

BMF

Nothing, Inc.

Publisher:
Nothing, Inc.

Product:
BMF

Description:
Render Stats for Nerds

Version:
0.15.0.0

MD5:
0b7dbe3605d5ae64bdf33acaf4727d8a

SHA-1:
c84df64b81e3e5b0924cf2f64bcacd9612158c62

SHA-256:
8223e08ff303c06d75ff9b01ca62a91676defc4a06e354dd68b554ed36ba4457

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/24/2024 5:13:01 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Malware.Generic(Thunder)!1.A1C4 [F]
23.00.65.16117

File size:
1.2 MB (1,246,208 bytes)

Product version:
0.15.0.0

Copyright:
Copyright (C) 2015

Original file name:
bmf.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\d3d9.dll

File PE Metadata
Compilation timestamp:
1/4/2016 10:49:24 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
24576:+uUDWqTC/ah+fDHwX0J+bCLIYtgHlNMlE8:+uUNCSwHwNHcE8

Entry address:
0x2F8B3

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, EA, 05, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, A8, FE, FF, FF, 83, C4, 0C, 5D, C2, 0C, 00, 55, 8B, EC, 83, 61, 04, 00, 83, 61, 08, 00, 8B, 45, 08, 89, 41, 04, 8B, C1, C7, 01, 70, FB, 09, 10, 5D, C2, 04, 00, 55, 8B, EC, 51, 56, FF, 75, 08, 8B, F1, 89, 75, FC, E8, 60, 00, 00, 00, C7, 06, 70, FB, 09, 10, 8B, C6, 5E, 8B, E5, 5D, C2, 04, 00, 83, 61, 04, 00, 8B, C1, 83, 61, 08, 00, C7, 41, 04, 78, FB, 09, 10, C7, 01, 70, FB, 09, 10, C3, 55, 8B, EC, 51, 56, FF, 75...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
627.5 KB (642,560 bytes)

The file d3d9.dll has been seen being distributed by the following URL.

https://github.com/Kaldaien/TZF/releases/download/.../d3d9.dll

Scan d3d9.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.