2024-05-26_b3d72e5c38e8d5a19612ed819eb10041_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-26_b3d72e5c38e8d5a19612ed819eb10041_bkransomware
Size

15.9MB
MD5

b3d72e5c38e8d5a19612ed819eb10041
SHA1

3d5b04e929299162c7fa3d1cf44274d45ee97a3d
SHA256

1427d8ede435bf1dff14bbb28826f4db2d910cbb575bae08d99416ddf5a59353
SHA512

6bc7df3da490f478fcfa3adc6b767a9724e0ee77ad81ebb2163d929b319a5d258a8ca95141bac5d1f8635fa655b270a31afec95a6bccc9985213f1975835a7a1
SSDEEP

393216:DYub76ULsM31kLbS2OMpf7Jap/invi++bh0Fu:DYub7rgMeLbvj7sg2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-26_b3d72e5c38e8d5a19612ed819eb10041_bkransomware

Files

2024-05-26_b3d72e5c38e8d5a19612ed819eb10041_bkransomware
.exe windows:5 windows x86 arch:x86

63dddde4630e77870a9837e267c92012

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\iSafeDev\SVNDev\VideoProtect\VideoPlayS\VideoPlayS.pdb

Imports

libvlc

libvlc_audio_set_volume
libvlc_media_new_path
libvlc_media_player_get_length
libvlc_media_player_get_position
libvlc_media_player_get_state
libvlc_media_player_get_time
libvlc_media_player_is_playing
libvlc_media_player_new_from_media
libvlc_media_player_pause
libvlc_media_player_play
libvlc_media_player_release
libvlc_media_player_set_hwnd
libvlc_media_player_set_rate
libvlc_media_player_set_time
libvlc_new

kernel32

GlobalFlags
SetErrorMode
VerSetConditionMask
VerifyVersionInfoW
GetWindowsDirectoryW
GetTempFileNameW
GetTempPathW
SearchPathW
GetProfileIntW
FindResourceExW
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
GetStdHandle
GetModuleHandleExW
WriteConsoleW
RtlUnwind
ExitThread
HeapQueryInformation
SetStdHandle
GetStartupInfoW
GetUserDefaultUILanguage
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetTimeZoneInformation
GetConsoleMode
ReadConsoleW
GetConsoleCP
LCMapStringW
SetEnvironmentVariableA
LocalReAlloc
lstrlenA
GetSystemDefaultUILanguage
GetLocaleInfoW
GetEnvironmentStringsW
CompareStringW
GetProcAddress
GetModuleHandleW
GetCurrentProcess
CloseHandle
OpenProcess
GetLastError
VirtualAllocEx
ReadProcessMemory
VirtualFreeEx
OutputDebugStringW
GetCurrentProcessId
QueryDosDeviceW
SizeofResource
LockResource
LoadResource
FindResourceW
InterlockedDecrement
WideCharToMultiByte
OpenMutexW
CreateMutexW
GetFileAttributesW
SetFileAttributesW
CreateFileW
GetFileSize
WaitForSingleObject
ReleaseMutex
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
GetTickCount
GlobalAlloc
GlobalLock
GlobalUnlock
FreeResource
QueryPerformanceFrequency
QueryPerformanceCounter
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalGetAtomNameW
SetThreadPriority
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
lstrcmpA
GetCurrentThread
GetFileTime
GetFileAttributesExW
GetThreadLocale
lstrcmpiW
UnlockFile
LockFile
CreateDirectoryW
GetModuleFileNameW
LoadLibraryW
GetFullPathNameW
FlushFileBuffers
GlobalSize
MulDiv
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
GetSystemDirectoryW
SetLastError
EncodePointer
VirtualAlloc
VirtualFree
VirtualQuery
ResumeThread
SuspendThread
GetCurrentThreadId
CreateToolhelp32Snapshot
VirtualProtect
OpenThread
Thread32Next
HeapCreate
Thread32First
SetThreadContext
GetThreadContext
FreeLibrary
SetCurrentDirectoryW
GetVolumeInformationW
GetCommandLineW
DeleteCriticalSection
DecodePointer
EnterCriticalSection
HeapSize
RaiseException
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
ExitProcess
GetLocalTime
TerminateThread
CreateThread
Sleep
CreateProcessW
ExpandEnvironmentStringsW
GlobalFree
GlobalReAlloc
SetFilePointerEx
GetFileSizeEx
OutputDebugStringA
SetFileTime
DosDateTimeToFileTime
GetCurrentDirectoryW
SystemTimeToFileTime
GetFileType
DuplicateHandle
MultiByteToWideChar
GetUserDefaultLangID
CopyFileW
DeleteFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
FindClose
FindFirstFileW
GetTimeFormatW
GetDateFormatW
GetVersionExW
GetSystemInfo
LocalFree
FormatMessageW

user32

InsertMenuItemW
TranslateAcceleratorW
CharUpperBuffW
RegisterClipboardFormatW
CreateAcceleratorTableW
LoadAcceleratorsW
MapVirtualKeyW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
GetUpdateRect
SetClassLongW
DestroyAcceleratorTable
ModifyMenuW
CopyIcon
GetIconInfo
GetDoubleClickTime
LockWindowUpdate
BringWindowToTop
SetCursorPos
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetParent
GetNextDlgGroupItem
SetRect
InvalidateRgn
CopyAcceleratorTableW
CharNextW
WaitMessage
MonitorFromPoint
UnionRect
EnableScrollBar
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
MessageBeep
DeleteMenu
GetSystemMenu
GetAsyncKeyState
IsZoomed
TrackMouseEvent
EnumDisplayMonitors
RealChildWindowFromPoint
SendDlgItemMessageA
CopyImage
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
ShowOwnedPopups
TranslateMessage
GetMessageW
DrawIconEx
IsRectEmpty
DrawFocusRect
DrawFrameControl
DrawEdge
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
DrawStateW
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IntersectRect
InflateRect
CharUpperW
WindowFromPoint
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuState
GetMenuStringW
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
EnableMenuItem
CheckMenuItem
IsDialogMessageW
SetWindowTextW
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
ReuseDDElParam
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetLastActivePopup
GetClassLongW
EqualRect
CopyRect
GetSysColor
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetActiveWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
SetMenu
GetMenu
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
CreateWindowExW
LoadBitmapW
SetWindowRgn
SetWindowLongW
SetLayeredWindowAttributes
GetCursorPos
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
GetSubMenu
LoadMenuW
keybd_event
GetClassNameW
GetForegroundWindow
DrawIcon
IsIconic
EnumWindows
GetWindowTextW
LoadIconW
LoadImageW
UnregisterClassW
SetForegroundWindow
SetWindowPos
FillRect
DrawTextW
GetWindowRgn
DestroyCursor
CreateMenu
InvertRect
HideCaret
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
RegisterWindowMessageW
SetRectEmpty
UpdateWindow
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
IsClipboardFormatAvailable
SubtractRect
GetKeyNameTextW
PostThreadMessageW
SetMenuItemBitmaps
FrameRect
GetCapture
OffsetRect
GetTopWindow
RemovePropW
SetPropW
GetPropW
ScreenToClient
GetSystemMetrics
SetCursor
PtInRect
IsWindow
GetFocus
IsWindowEnabled
GetWindowLongW
KillTimer
SetTimer
ReleaseDC
UpdateLayeredWindow
GetWindowRect
GetDC
RegisterClassExW
GetSysColorBrush
DefWindowProcW
GetDesktopWindow
FindWindowExW
FindWindowW
GetWindowThreadProcessId
GetKeyState
PostMessageW
SendMessageW
SetCapture
ReleaseCapture
InvalidateRect
GetParent
MapWindowPoints
RedrawWindow
WinHelpW
UnpackDDElParam
IsWindowVisible
GetClientRect
LoadCursorW
EnableWindow
GetWindow

gdi32

CreateHatchBrush
CreatePatternBrush
Escape
ExcludeClipRect
GetClipBox
GetDeviceCaps
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleWindowExtEx
CopyMetaFileW
CreateDCW
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateDIBSection
GetRgnBox
SetPixel
StretchBlt
SetDIBColorTable
OffsetRgn
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
GetBoundsRect
PtInRegion
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
SetPixelV
GetTextFaceW
SetTextColor
CreateBitmap
SetBkColor
Rectangle
RoundRect
CreatePen
GetTextExtentPoint32W
CreateFontW
FrameRgn
FillRgn
CreateRoundRectRgn
CreateFontIndirectW
CreateSolidBrush
RealizePalette
SelectPalette
CombineRgn
GetPixel
CreateRectRgn
BitBlt
GetTextMetricsW
GetBkColor
DeleteDC
DeleteObject
SelectObject
CreateCompatibleDC
GetStockObject
ScaleViewportExtEx
CreateCompatibleBitmap
GetObjectW

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueExW
LookupPrivilegeValueW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
OpenProcessToken
RegOpenKeyExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
AdjustTokenPrivileges

shell32

SHAppBarMessage
SHGetSpecialFolderPathW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
DragQueryFileW
DragFinish
SHGetMalloc
SHGetSpecialFolderLocation
ShellExecuteW
SHGetDesktopFolder

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
DrawThemeParentBackground
DrawThemeText
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
IsAppThemed

ole32

CoUninitialize
CoCreateInstance
CoInitializeSecurity
CoInitializeEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoRevokeClassObject
CoRegisterMessageFilter
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitialize
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CreateStreamOnHGlobal
CoSetProxyBlanket
CoTaskMemFree

oleaut32

SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysAllocStringLen
SysAllocString
VariantCopy
VarBstrFromDate
VariantChangeType
LoadTypeLi
OleCreateFontIndirect
VariantClear
VariantInit
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdiplusStartup
GdiplusShutdown
GdipCreateLineBrushI
GdipGetImageHeight
GdipLoadImageFromStream
GdipDrawImagePoints
GdipMeasureString
GdipSetStringFormatTrimming
GdipDeleteStringFormat
GdipCreateStringFormat
GdipGetImageWidth
GdipFree
GdipDisposeImage
GdipAlloc
GdipCloneImage
GdipCreateFromHDC
GdipDeleteGraphics
GdipGetImagePixelFormat
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipSetSmoothingMode
GdipDrawImageRectRect
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipGraphicsClear
GdipFillRectangle
GdipSetSolidFillColor
GdipCreatePath
GdipDeletePath
GdipAddPathEllipse
GdipCreatePathGradientFromPath
GdipSetPathGradientCenterColor
GdipSetPathGradientSurroundColorsWithCount
GdipGetPathGradientPointCount
GdipFillEllipse
GdipReleaseDC
GdipCreateFontFamilyFromName
GdipCreateFont
GdipDeleteFont
GdipCreatePen1
GdipDeletePen
GdipDrawLineI
GdipSetTextRenderingHint
GdipFillRectangleI
GdipCreateMatrix
GdipDeleteMatrix
GdipResetWorldTransform
GdipTranslateMatrix
GdipRotateMatrix
GdipSetWorldTransform
GdipDrawString
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily

psapi

GetProcessImageFileNameW

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

winhttp

WinHttpGetIEProxyConfigForCurrentUser
WinHttpReceiveResponse
WinHttpWriteData
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpGetProxyForUrl
WinHttpSendRequest
WinHttpAddRequestHeaders
WinHttpSetOption
WinHttpOpenRequest
WinHttpConnect
WinHttpCloseHandle
WinHttpOpen
WinHttpSetTimeouts
WinHttpCrackUrl
WinHttpQueryHeaders

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 373KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13.9MB - Virtual size: 13.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63dddde4630e77870a9837e267c92012

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

libvlc

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

psapi

version

winhttp

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 373KB - Virtual size: 372KB

.data Size: 27KB - Virtual size: 75KB

.rsrc Size: 13.9MB - Virtual size: 13.9MB

.reloc Size: 128KB - Virtual size: 128KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 373KB - Virtual size: 372KB

.data
Size: 27KB - Virtual size: 75KB

.rsrc
Size: 13.9MB - Virtual size: 13.9MB

.reloc
Size: 128KB - Virtual size: 128KB