2024-05-28_578c54d2cb33ad6a1a25c70c11182641_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-28_578c54d2cb33ad6a1a25c70c11182641_bkransomware
Size

3.6MB
MD5

578c54d2cb33ad6a1a25c70c11182641
SHA1

862651b57a7fe3d3ef962b859d85bd8f92b2db66
SHA256

e25257b1b3690bb0fcde4ee258a0480dc922c1d8fd033239ed213df124a9dfff
SHA512

ede7525781788ca12b43255445fcdb744b3bbba0272386e99549229cb2552fd1649b62d8ac8d29470224df6ac5e01e484f07133f0c29db67a4c20764ba3b1025
SSDEEP

49152:jvwLgkCZbpUWxKdF+uPQcSuHRwZLYVP6JPcv7UCw2Q0p4g+dK/+So0m5kJK:jIgAWQJYcSueLaiJPo73wgpcdKo15ko

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-28_578c54d2cb33ad6a1a25c70c11182641_bkransomware

Files

2024-05-28_578c54d2cb33ad6a1a25c70c11182641_bkransomware
.exe windows:5 windows x86 arch:x86

187ff3b0f1951b397e8cbfb76874451d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathW
CreateFileW
GetVersionExA
GetCurrentThreadId
GlobalSize
WideCharToMultiByte
SetEndOfFile
HeapSize
WriteConsoleW
HeapReAlloc
FlushFileBuffers
SetStdHandle
LCMapStringW
GetStringTypeW
OutputDebugStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetConsoleCP
SetFilePointerEx
ReadConsoleW
GetConsoleMode
DeleteCriticalSection
GetFileType
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WriteFile
GetStdHandle
GetModuleHandleExW
ExitProcess
GetProcessHeap
GetCommandLineW
DeleteFileW
LoadLibraryExW
ExitThread
CreateThread
DecodePointer
EncodePointer
RtlUnwind
IsProcessorFeaturePresent
IsDebuggerPresent
HeapAlloc
HeapFree
LoadLibraryExA
FreeLibrary
RaiseException
GetLocalTime
GetModuleFileNameW
GetTickCount
SetFilePointer
ReadFile
GetProcAddress
VerifyVersionInfoW
WritePrivateProfileStringW
GetLastError
VerSetConditionMask
InterlockedDecrement
InterlockedIncrement
GetPrivateProfileStringW
GetPrivateProfileIntW
CloseHandle
WaitForSingleObject
ResumeThread
GetCurrentProcess
GetProcessAffinityMask
MultiByteToWideChar
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc

user32

GetIconInfo
DrawIconEx
GetWindowThreadProcessId
IsRectEmpty
GetCursor
GetCursorPos
IsZoomed
AttachThreadInput
SystemParametersInfoW
SystemParametersInfoA
LoadCursorW
FindWindowW
OffsetRect
IntersectRect
SetCursor
ShowCursor
MessageBoxW
DrawTextW
GetActiveWindow
PostQuitMessage
DispatchMessageW
TranslateMessage
GetMessageW
SetWindowLongW
GetWindowLongW
DestroyIcon
LoadIconW
SetParent
FillRect
ClientToScreen
MessageBeep
InvalidateRect
EndPaint
BeginPaint
SetActiveWindow
UpdateWindow
TrackPopupMenu
GetSubMenu
DestroyMenu
LoadMenuW
GetSystemMetrics
EnableWindow
KillTimer
SetTimer
GetKeyState
CreateDialogParamW
BringWindowToTop
SetWindowPos
MoveWindow
ShowWindow
DestroyWindow
IsWindow
CreateWindowExW
RegisterClassW
DefWindowProcW
ScreenToClient
GetWindowRect
PostMessageW
SetRect
GetClientRect
GetParent
SetWindowTextW
SetFocus
SendDlgItemMessageW
SetDlgItemTextW
GetDlgItem
EndDialog
IsWindowVisible
SendMessageW
LoadStringW
ReleaseDC
GetDC
WindowFromPoint

gdi32

BitBlt
SetStretchBltMode
StretchDIBits
SetBkColor
SelectPalette
SelectObject
RealizePalette
GetClipBox
DeleteDC
CreateSolidBrush
CreateFontIndirectW
CreateDCW
SetTextColor
SetBkMode
GetStockObject
GetSystemPaletteEntries
GetDeviceCaps
DeleteObject
CreatePalette
CreateCompatibleBitmap
CreateCompatibleDC
GetDIBits
GetObjectW
GetDCOrgEx

Sections

.text
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

187ff3b0f1951b397e8cbfb76874451d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 308KB - Virtual size: 308KB

.rdata Size: 207KB - Virtual size: 207KB

.data Size: 8KB - Virtual size: 24KB

.rsrc Size: 41KB - Virtual size: 40KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 308KB - Virtual size: 308KB

.rdata
Size: 207KB - Virtual size: 207KB

.data
Size: 8KB - Virtual size: 24KB

.rsrc
Size: 41KB - Virtual size: 40KB

.reloc
Size: 13KB - Virtual size: 13KB