binkw64[.]dll | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

binkw64.dll
Size

302KB
MD5

b08e48eca511c7641c96fc25fd846542
SHA1

bd557acefae9dccce5e74d0a8059c0437397f7f6
SHA256

8d7a951b265c9b3e7ca6beee2af0c4225acef9412b57b85a1bff9f5a70cb4523
SHA512

721ebec2636c96516e6be896ac51d942bb4de998830dd9698f07d303d557df3cc90dc395b83b8cf126866a660693cd5eb9e4daa93991b2d8cb8f5e1bd57a5e4a
SSDEEP

6144:lMb3LV8U2iIeHM02tRsCXazpBUet7N7fJSQUYTqzLMKuXtwHU+R:ljU20HM023EpB4Sqvuq0+R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
binkw64.dll

Files

binkw64.dll
.dll windows:5 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\devel\projects\bink\build\binkw64.pdb

Exports

Exports

BinkBufferBlit
BinkBufferCheckWinPos
BinkBufferClear
BinkBufferClose
BinkBufferGetDescription
BinkBufferGetError
BinkBufferLock
BinkBufferOpen
BinkBufferSetDirectDraw
BinkBufferSetHWND
BinkBufferSetOffset
BinkBufferSetResolution
BinkBufferSetScale
BinkBufferUnlock
BinkCheckCursor
BinkClose
BinkCloseTrack
BinkControlBackgroundIO
BinkControlPlatformFeatures
BinkCopyToBuffer
BinkCopyToBufferRect
BinkDDSurfaceType
BinkDX9SurfaceType
BinkDoFrame
BinkDoFrameAsync
BinkDoFrameAsyncMulti
BinkDoFrameAsyncWait
BinkDoFramePlane
BinkFreeGlobals
BinkGetError
BinkGetFrameBuffersInfo
BinkGetKeyFrame
BinkGetPalette
BinkGetPlatformInfo
BinkGetRealtime
BinkGetRects
BinkGetSummary
BinkGetTrackData
BinkGetTrackID
BinkGetTrackMaxSize
BinkGetTrackType
BinkGoto
BinkIsSoftwareCursor
BinkLogoAddress
BinkNextFrame
BinkOpen
BinkOpenDirectSound
BinkOpenMiles
BinkOpenTrack
BinkOpenWaveOut
BinkOpenWithOptions
BinkOpenXAudio2
BinkPause
BinkRegisterFrameBuffers
BinkRequestStopAsyncThread
BinkRestoreCursor
BinkService
BinkSetError
BinkSetFileOffset
BinkSetFrameRate
BinkSetIO
BinkSetIOSize
BinkSetMemory
BinkSetPan
BinkSetSimulate
BinkSetSoundOnOff
BinkSetSoundSystem
BinkSetSoundSystem2
BinkSetSoundTrack
BinkSetSpeakerVolumes
BinkSetVideoOnOff
BinkSetVolume
BinkSetWillLoop
BinkShouldSkip
BinkStartAsyncThread
BinkUseTelemetry
BinkUseTmLite
BinkWait
BinkWaitStopAsyncThread
RADTimerRead

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK16
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK32
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKP8
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINK
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RADCODE
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BINKBSS
Size: - Virtual size: 105KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BINKDATA
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BINKCONS
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RADDATA
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RADCONST
Size: 512B - Virtual size: 150B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.NewIT
Size: 512B - Virtual size: 198B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 50KB - Virtual size: 50KB

BINK16 Size: 2KB - Virtual size: 2KB

BINK32 Size: 3KB - Virtual size: 2KB

BINKP8 Size: 3KB - Virtual size: 2KB

BINK Size: 128KB - Virtual size: 128KB

RADCODE Size: 2KB - Virtual size: 1KB

BINKBSS Size: - Virtual size: 105KB

.rdata Size: 25KB - Virtual size: 24KB

.data Size: 21KB - Virtual size: 25KB

.pdata Size: 8KB - Virtual size: 7KB

BINKDATA Size: 11KB - Virtual size: 11KB

BINKCONS Size: 22KB - Virtual size: 21KB

RADDATA Size: 512B - Virtual size: 44B

RADCONST Size: 512B - Virtual size: 150B

.rsrc Size: 19KB - Virtual size: 19KB

.reloc Size: 2KB - Virtual size: 1KB

.NewIT Size: 512B - Virtual size: 198B

.text
Size: 50KB - Virtual size: 50KB

BINK16
Size: 2KB - Virtual size: 2KB

BINK32
Size: 3KB - Virtual size: 2KB

BINKP8
Size: 3KB - Virtual size: 2KB

BINK
Size: 128KB - Virtual size: 128KB

RADCODE
Size: 2KB - Virtual size: 1KB

BINKBSS
Size: - Virtual size: 105KB

.rdata
Size: 25KB - Virtual size: 24KB

.data
Size: 21KB - Virtual size: 25KB

.pdata
Size: 8KB - Virtual size: 7KB

BINKDATA
Size: 11KB - Virtual size: 11KB

BINKCONS
Size: 22KB - Virtual size: 21KB

RADDATA
Size: 512B - Virtual size: 44B

RADCONST
Size: 512B - Virtual size: 150B

.rsrc
Size: 19KB - Virtual size: 19KB

.reloc
Size: 2KB - Virtual size: 1KB

.NewIT
Size: 512B - Virtual size: 198B