AliMagicMonitor.dll

Description: AliSec

Authors: 内部版本,请勿外传

Version: 1.0.0.1

Architecture: 64-bit

Operating System: Windows NT

SHA256: 03a2429ecd17f75f2602ca23ba4d8115

File Size: 80.2 KB

Uploaded At: Dec. 2, 2025, 2:42 p.m.

Views: 6

Exported Functions

  • FxDriverEntryUm (Ordinal: 1, Address: 0x6aa0)

Imported DLLs & Functions

ADVAPI32.dll
  • GetTraceEnableFlags (Address: 0x180009020)
  • GetTraceEnableLevel (Address: 0x180009008)
  • GetTraceLoggerHandle (Address: 0x180009018)
  • RegisterTraceGuidsW (Address: 0x180009000)
  • TraceMessage (Address: 0x180009010)
  • UnregisterTraceGuids (Address: 0x180009028)
api-ms-win-crt-heap-l1-1-0.dll
  • _callnewh (Address: 0x1800091e8)
  • calloc (Address: 0x1800091f0)
  • free (Address: 0x1800091e0)
  • malloc (Address: 0x1800091f8)
api-ms-win-crt-runtime-l1-1-0.dll
  • _cexit (Address: 0x180009218)
  • _configure_narrow_argv (Address: 0x180009258)
  • _errno (Address: 0x180009208)
  • _execute_onexit_table (Address: 0x180009210)
  • _initialize_narrow_environment (Address: 0x180009248)
  • _initialize_onexit_table (Address: 0x180009228)
  • _initterm (Address: 0x180009238)
  • _initterm_e (Address: 0x180009240)
  • _invalid_parameter_noinfo (Address: 0x180009230)
  • _seh_filter_dll (Address: 0x180009250)
  • terminate (Address: 0x180009220)
api-ms-win-crt-string-l1-1-0.dll
  • memset (Address: 0x180009268)
  • strcpy_s (Address: 0x180009270)
AVRT.dll
  • AvRevertMmThreadCharacteristics (Address: 0x180009038)
  • AvSetMmThreadCharacteristicsW (Address: 0x180009040)
d3d11.dll
  • D3D11CreateDevice (Address: 0x180009280)
dxgi.dll
  • CreateDXGIFactory2 (Address: 0x180009290)
KERNEL32.dll
  • __C_specific_handler (Address: 0x180009118)
  • CloseHandle (Address: 0x180009078)
  • CreateEventW (Address: 0x180009090)
  • CreateThread (Address: 0x1800090a0)
  • DeleteCriticalSection (Address: 0x1800090a8)
  • FlsAlloc (Address: 0x180009160)
  • FlsFree (Address: 0x180009148)
  • FlsGetValue (Address: 0x180009158)
  • FlsSetValue (Address: 0x180009150)
  • FlushInstructionCache (Address: 0x1800090e8)
  • GetCurrentProcess (Address: 0x1800090c0)
  • GetCurrentProcessId (Address: 0x180009130)
  • GetCurrentThread (Address: 0x180009058)
  • GetCurrentThreadId (Address: 0x1800090c8)
  • GetLastError (Address: 0x1800090b8)
  • GetModuleHandleA (Address: 0x180009060)
  • GetProcAddress (Address: 0x180009068)
  • GetSystemTimeAsFileTime (Address: 0x180009128)
  • GetThreadContext (Address: 0x180009170)
  • InitializeCriticalSectionEx (Address: 0x1800090b0)
  • InitializeSListHead (Address: 0x180009070)
  • InterlockedFlushSList (Address: 0x180009168)
  • IsDebuggerPresent (Address: 0x180009050)
  • IsProcessorFeaturePresent (Address: 0x180009140)
  • QueryPerformanceCounter (Address: 0x180009138)
  • RaiseException (Address: 0x180009110)
  • ResumeThread (Address: 0x1800090d8)
  • RtlCaptureContext (Address: 0x180009178)
  • RtlLookupFunctionEntry (Address: 0x180009180)
  • RtlVirtualUnwind (Address: 0x180009188)
  • SetEvent (Address: 0x180009080)
  • SetLastError (Address: 0x180009120)
  • SetThreadContext (Address: 0x1800090e0)
  • SetUnhandledExceptionFilter (Address: 0x180009198)
  • SuspendThread (Address: 0x1800090d0)
  • TerminateProcess (Address: 0x1800091a0)
  • UnhandledExceptionFilter (Address: 0x180009190)
  • VirtualAlloc (Address: 0x1800090f0)
  • VirtualFree (Address: 0x180009100)
  • VirtualProtect (Address: 0x1800090f8)
  • VirtualQuery (Address: 0x180009108)
  • WaitForMultipleObjects (Address: 0x180009098)
  • WaitForSingleObject (Address: 0x180009088)
ntdll.dll
  • DbgPrintEx (Address: 0x1800092a8)
  • RtlPcToFileHeader (Address: 0x1800092a0)
OLE32.dll
  • CoCreateGuid (Address: 0x1800091b0)
WppRecorderUM.dll
  • WppAutoLogStart (Address: 0x1800091c0)
  • WppAutoLogStop (Address: 0x1800091c8)
  • WppAutoLogTrace (Address: 0x1800091d0)