smk2014[.]bin | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

smk2014.bin
Size

109KB
MD5

a369ee56b3081026b7b9e5a370d0e422
SHA1

1084b74c820e457e12c62aaca663c5a875d0c9e4
SHA256

e92d1c2c1e145c1d6c42dd402e75f46e5edfb2bab5539c4d103d345b5ac965a3
SHA512

f96b960962ae1a37478472d4931ba01cf94846889bac223a3dd0946488b13f01e9fca76a4088eec2e3ab77071a0f7a23ae209533fd245223ef7618d5c57d1e19
SSDEEP

3072:yTYbdwqUD0Y/ooCIMBHnBuN/pejWnd6nG4s6:PhUDBgSuHnBujm2d6G4p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
smk2014.bin

Files

smk2014.bin
.exe windows:5 windows x86 arch:x86

d4c27fab10731adf126c9d20d904d56e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
LCMapStringW
WriteConsoleW
SetStdHandle
HeapSize
RtlUnwind
MultiByteToWideChar
LoadLibraryW
Sleep
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
HeapReAlloc
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
ExitProcess
GetModuleHandleW
GetProcAddress
HeapCreate
LocalFree
CloseHandle
GetModuleHandleA
CreateIoCompletionPort
EnumDateFormatsA
lstrcmpiA
GetLastError
GetCommandLineW
SetThreadLocale
CreateFileW
ReadFile
MulDiv
GetConsoleWindow
GlobalAlloc
WriteFile
GetProcessHeap
GetTickCount
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
DecodePointer
RaiseException
GetStartupInfoW
HeapAlloc
lstrlenA
SearchPathW
CreateFileA
TlsSetValue
HeapSetInformation
GetCommandLineA
HeapFree
FlushFileBuffers

user32

RegisterClassA
MoveWindow
GetWindow
ActivateKeyboardLayout
SetCursor
GetMessageA
GetWindowRect
IsMenu
MapDialogRect
PostQuitMessage
IsIconic
FillRect
GetTopWindow
DrawTextA
DrawIconEx
LoadBitmapA
GetParent
LoadIconA
wsprintfA
GetClientRect
CreateMenu
CharPrevA
SendMessageA
CreateIconIndirect
GetIconInfo
GetDC
TranslateMessage
SetRect
SetWindowLongA
MessageBoxA
AppendMenuW
SystemParametersInfoW
CreateWindowExA
PeekMessageA
ReleaseDC
GetMenuState
GetDlgItem
EndDialog
ShowWindow
SetMenu
GetSysColorBrush
ClipCursor
CreateWindowExW
DispatchMessageA
RegisterClassW
GetSystemMetrics
IsWindowVisible
LoadImageA
UpdateWindow
LoadCursorA
DestroyIcon
ValidateRect
DefWindowProcW
CheckMenuItem

gdi32

GetBitmapBits
BitBlt
SetTextColor
DeleteDC
CreateFontIndirectW
StretchBlt
CreateFontIndirectA
SetBkMode
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
Rectangle
CreateFontW
SetStretchBltMode
CreatePen
SetROP2
GetObjectA
GetStockObject
CreateSolidBrush
GetDeviceCaps

advapi32

GetSecurityInfo
LookupAccountSidA

shell32

CommandLineToArgvW
ExtractIconA

ole32

CreateStreamOnHGlobal

oleaut32

OleCreatePictureIndirect

psapi

GetModuleBaseNameA

comctl32

InitCommonControlsEx
ord17
ImageList_ReplaceIcon
ImageList_Create
ImageList_GetIcon

d3d9

Direct3DCreate9

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4c27fab10731adf126c9d20d904d56e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

psapi

comctl32

d3d9

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 16KB - Virtual size: 23KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 16KB - Virtual size: 23KB

.rsrc
Size: 12KB - Virtual size: 11KB