2024-05-10_27cb534be2407d6166cd0b071324f305_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-10_27cb534be2407d6166cd0b071324f305_bkransomware
Size

1.9MB
MD5

27cb534be2407d6166cd0b071324f305
SHA1

da1ec33f0e2bcaa469baab6f55e4d445a6450a65
SHA256

049fbecadf6f1e9c346992fd4e203ccde7783ddcc0672a82950c8ab1f34cfd63
SHA512

6152bdf72bbd1b6144e6cb3db4d3597a272f6d2fcbba73f8e8f0548669b573d8d6ef7726043712e7807eb865bc6dce3277cfe918e1dcad7203d7b9d8cc48a656
SSDEEP

49152:Z4AQzaKihHCOSsketQRjiRu3YpOsYG209v5zT+265:mAUaKihiOSYtQlis3Yl209v5zT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-10_27cb534be2407d6166cd0b071324f305_bkransomware

Files

2024-05-10_27cb534be2407d6166cd0b071324f305_bkransomware
.exe windows:6 windows x86 arch:x86

7fd8deb3afc0b0fa7485b4d6ea5214d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glOrtho
glLoadIdentity
glMatrixMode
glViewport
glClearColor
wglMakeCurrent
wglCreateContext
wglGetProcAddress
glTexSubImage2D
glDisable
glEnable
glBindTexture
wglGetCurrentDC
glGenTextures
glDeleteTextures
wglGetCurrentContext

kernel32

VerSetConditionMask
VerifyVersionInfoW
GetTempFileNameW
GetTempPathW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
GetUserDefaultUILanguage
GetCommandLineW
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemInfo
VirtualAlloc
VirtualQuery
RtlUnwind
ExitProcess
GetModuleHandleExW
CreateThread
ExitThread
HeapQueryInformation
GetSystemTimeAsFileTime
SetStdHandle
GetFileType
GetStdHandle
GetStartupInfoW
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetConsoleCP
GetConsoleMode
SetFilePointerEx
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetTimeZoneInformation
GetStringTypeW
ReadConsoleW
OutputDebugStringW
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
GetSystemDefaultUILanguage
GetLocaleInfoW
lstrcpyW
GetCurrentDirectoryW
GlobalFlags
GlobalGetAtomNameW
FileTimeToSystemTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
GetThreadLocale
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalFindAtomW
LoadLibraryA
GetSystemDirectoryW
EncodePointer
GlobalAddAtomW
ResumeThread
SetThreadPriority
LoadLibraryW
GetModuleHandleA
OutputDebugStringA
GetWindowsDirectoryW
GetTickCount
CompareStringW
SetErrorMode
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetProcAddress
FreeResource
GetCurrentProcessId
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetModuleFileNameW
GetVersionExW
GetCurrentThreadId
GetCurrentThread
FreeLibrary
SetLastError
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalSize
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
InitializeCriticalSectionAndSpinCount
DecodePointer
HeapSize
RaiseException
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
WideCharToMultiByte
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionEx
OpenFileMappingA
QueryPerformanceCounter
GetModuleHandleW
Sleep
ReleaseSemaphore
UnmapViewOfFile
OpenMutexA
MapViewOfFile
CreateFileMappingA
CreateSemaphoreA
GetVersion
ReleaseMutex
WaitForSingleObject
CloseHandle
GetLastError
CreateMutexA

user32

CreateMenu
DestroyCursor
GetWindowRgn
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
IsZoomed
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
SetParent
UnionRect
GetKeyNameTextW
MapVirtualKeyW
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
GetIconInfo
DrawIconEx
DrawFocusRect
GetMenuDefaultItem
RegisterClipboardFormatW
ReuseDDElParam
UnpackDDElParam
LoadImageW
SetRectEmpty
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
DestroyIcon
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
SetRect
InvalidateRgn
CopyAcceleratorTableW
OffsetRect
CharNextW
InvalidateRect
DeleteMenu
CopyImage
WindowFromPoint
ReleaseCapture
SetCapture
RealChildWindowFromPoint
IntersectRect
CharUpperW
LoadCursorW
GetSysColorBrush
SystemParametersInfoW
InflateRect
GetMenuItemInfoW
DestroyMenu
SendDlgItemMessageA
IsDialogMessageW
SetWindowTextW
CheckDlgButton
ShowWindow
GetMonitorInfoW
MonitorFromWindow
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
GetWindowRect
LoadMenuW
SetCursor
ShowOwnedPopups
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
IsWindowVisible
TranslateMessage
GetMessageW
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsWindow
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
GetLastActivePopup
GetWindowThreadProcessId
GetParent
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
FrameRect
CharUpperBuffW
ModifyMenuW
SetMenuDefaultItem
CopyIcon
GetDoubleClickTime
SetClassLongW
GetWindowLongW
MessageBoxW
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
LockWindowUpdate
MoveWindow
IsWindowEnabled
PostQuitMessage
FillRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
UnhookWindowsHookEx
KillTimer
WaitMessage
PostMessageW
PeekMessageW
DispatchMessageW
RemoveMenu
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
DrawIcon
IsIconic
SetTimer
GetClientRect
SendMessageW
AppendMenuW
GetSystemMenu
LoadIconW
EnableWindow
UnregisterClassW
PostThreadMessageW
GetSystemMetrics
WindowFromDC
UpdateWindow
GetWindowTextA
GetForegroundWindow
MessageBoxA
WinHelpW

gdi32

CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
CreateRectRgnIndirect
GetTextExtentPoint32W
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
GetTextMetricsW
CreateCompatibleBitmap
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
CreateHatchBrush
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
CreateFontIndirectW
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
CreateBitmap
BitBlt
GetDeviceCaps
CreateDCW
CopyMetaFileW
SetPixelFormat
ChoosePixelFormat
GetObjectW
SetDIBColorTable
StretchBlt
DeleteDC
SelectObject
CreateCompatibleDC
CreateDIBSection
CreateEllipticRgn
DeleteObject
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
TextOutW
MoveToEx
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
CombineRgn

msimg32

AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegSetValueExW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetFileInfoW
DragQueryFileW
DragFinish
ShellExecuteW
SHAppBarMessage
SHBrowseForFolderW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathFindExtensionW
PathRemoveFileSpecW

uxtheme

GetThemeSysColor
DrawThemeText
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
OpenThemeData
CloseThemeData
GetThemeColor
GetCurrentThemeName
GetThemePartSize
IsAppThemed
GetWindowTheme

ole32

CreateStreamOnHGlobal
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoTaskMemAlloc
OleLockRunning
OleFlushClipboard
RevokeDragDrop
CoTaskMemFree
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CoCreateGuid
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
CoInitialize
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoInitializeEx
CoRevokeClassObject
DoDragDrop
CoRegisterMessageFilter
OleIsCurrentClipboard
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard

oleaut32

OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysFreeString
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocString

oledlg

OleUIBusyW

ws2_32

select
__WSAFDIsSet
shutdown
WSAGetLastError
accept
bind
closesocket
connect
htonl
htons
inet_addr
recv
recvfrom
send
sendto
socket
gethostbyname
WSAStartup
WSACleanup
WSASetLastError
WSAAsyncSelect

d3d9

Direct3DCreate9Ex

d3d11

D3D11CreateDevice

gdiplus

GdipFree
GdipAlloc
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup
GdiplusShutdown
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 331KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fd8deb3afc0b0fa7485b4d6ea5214d4

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

ws2_32

d3d9

d3d11

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 331KB - Virtual size: 331KB

.data Size: 26KB - Virtual size: 57KB

.rsrc Size: 39KB - Virtual size: 39KB

.reloc Size: 120KB - Virtual size: 120KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 331KB - Virtual size: 331KB

.data
Size: 26KB - Virtual size: 57KB

.rsrc
Size: 39KB - Virtual size: 39KB

.reloc
Size: 120KB - Virtual size: 120KB