2024-05-28_92b6a4feb1a57929c8e39558124dc1f2_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-28_92b6a4feb1a57929c8e39558124dc1f2_bkransomware
Size

3.1MB
MD5

92b6a4feb1a57929c8e39558124dc1f2
SHA1

c76b1538c51de0af390e6b42bc7eac8ed5c3877d
SHA256

c127581575e733f4738512c5465d7ffc26b7881ab5c8756745be7eb02191ede1
SHA512

77d72fcaf31ff23e34cf058ceed5e82e66f9da5ffa80308d84f7b7c36f8ae4a8f7577591d6dc3fe98369ef710a3f4bbfb31006e6af18804d996d5326590aaa6c
SSDEEP

98304:zEKpBn0E8jzAChpHPidedHJ3Do00/iHra9yz6xPb:QKpEPTFra9yz6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-28_92b6a4feb1a57929c8e39558124dc1f2_bkransomware

Files

2024-05-28_92b6a4feb1a57929c8e39558124dc1f2_bkransomware
.exe windows:5 windows x86 arch:x86

8e016bed3dfdfac505f512ec02558806

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

ws2_32

ioctlsocket
htonl
htons
listen
recv
select
send
setsockopt
connect
socket
WSAStartup
WSACleanup
closesocket
bind
WSASetLastError
WSAGetLastError
WSAIoctl
__WSAFDIsSet
inet_addr
shutdown
ntohl
inet_ntoa

msimg32

AlphaBlend
TransparentBlt

opengl32

glViewport
glTranslatef
glOrtho
glMatrixMode
glMaterialfv
glMaterialf
glLoadIdentity
glLightfv
glEnable
glClearColor
glClear
wglMakeCurrent
wglDeleteContext
wglCreateContext

glu32

gluDeleteQuadric
gluSphere
gluCylinder
gluNewQuadric
gluQuadricOrientation

kernel32

LocalAlloc
LocalReAlloc
GlobalFlags
CompareStringW
GetDiskFreeSpaceW
GetUserDefaultUILanguage
FindResourceExW
VerSetConditionMask
lstrcpyW
VerifyVersionInfoW
SetErrorMode
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetCommandLineW
RtlUnwind
GetSystemTimeAsFileTime
IsDebuggerPresent
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
ExitThread
SetStdHandle
GetFileType
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
GetStdHandle
GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetTimeZoneInformation
LCMapStringW
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
GetDriveTypeW
WriteConsoleW
SetEnvironmentVariableA
GetPrivateProfileIntW
CompareStringA
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GlobalGetAtomNameW
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFullPathNameW
lstrcmpA
ResumeThread
VirtualProtect
GetCurrentProcessId
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
GlobalHandle
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
MulDiv
GlobalFree
GlobalSize
GlobalAlloc
LoadLibraryA
ExpandEnvironmentStringsA
CompareFileTime
LoadLibraryW
GetProcAddress
FreeLibrary
InterlockedDecrement
InterlockedIncrement
GetPrivateProfileStringW
GetModuleFileNameW
SetFileAttributesW
SetLastError
WaitForMultipleObjects
GetVersionExW
GetFileAttributesW
FormatMessageW
LocalFree
SetThreadLocale
GetDiskFreeSpaceExW
GlobalUnlock
GlobalLock
GetTempPathW
SetThreadPriority
GetCurrentThread
WritePrivateProfileStringW
GetLocalTime
SystemTimeToFileTime
GetFileSize
CreateFileW
GetThreadLocale
GetDateFormatW
GetTimeFormatW
WideCharToMultiByte
DeleteFileW
lstrlenW
GetTickCount
SetCommTimeouts
SetCommState
SetCommMask
GetCommTimeouts
GetCommState
ReadFile
WriteFile
GetOverlappedResult
CreateDirectoryW
CreateEventW
CreateMutexW
FlushFileBuffers
ReleaseMutex
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetLastError
RaiseException
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
DecodePointer
GetSystemDefaultUILanguage
MultiByteToWideChar
FindNextFileW
FindFirstFileW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetModuleHandleW
FileTimeToSystemTime
FileTimeToLocalFileTime
FindClose
CopyFileW
CloseHandle
Sleep
WaitForSingleObject
TerminateThread
CreateThread
FindResourceW
SizeofResource
LoadResource
LockResource
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
ReplaceFileW
FreeResource
GetTempFileNameW
GetLocaleInfoW

user32

SendDlgItemMessageA
GetMenuItemInfoW
SystemParametersInfoW
SetParent
IsRectEmpty
SetRect
ReuseDDElParam
UnpackDDElParam
DestroyIcon
IntersectRect
DestroyMenu
LoadAcceleratorsW
BringWindowToTop
CharUpperW
TranslateMessage
GetMessageW
MapVirtualKeyW
GetKeyNameTextW
MapDialogRect
GetWindowThreadProcessId
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemInt
SetDlgItemInt
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
EqualRect
MapWindowPoints
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollRange
SetScrollRange
GetScrollPos
ScrollWindow
ValidateRect
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
GetMenu
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsChild
CreateWindowExW
GetClassInfoExW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
GetMenuStringW
AdjustWindowRectEx
DeleteMenu
IsZoomed
DrawMenuBar
GetKeyState
GetClassInfoW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
CreatePopupMenu
DestroyWindow
FindWindowW
SetForegroundWindow
IsIconic
ShowWindow
DrawIcon
LoadImageW
InsertMenuItemW
GetSystemMenu
SetDlgItemTextW
GetDlgItem
SetWindowPlacement
GetWindowPlacement
SetWindowPos
ShowScrollBar
SetRectEmpty
WindowFromPoint
ClientToScreen
GetIconInfo
InflateRect
FrameRect
DrawStateW
ReleaseCapture
SetCapture
GetCapture
GetNextDlgGroupItem
GetComboBoxInfo
GetSysColorBrush
SetCursor
SetMenuItemInfoW
MapVirtualKeyExW
ToAsciiEx
GetKeyboardState
IsWindowVisible
GetKeyboardLayout
LoadCursorW
SetScrollPos
GetParent
FillRect
DrawFocusRect
DrawFrameControl
CopyRect
ScreenToClient
TranslateAcceleratorW
KillTimer
LoadIconW
OffsetRect
GetCursorPos
GetSubMenu
EnableMenuItem
CheckMenuItem
GetMenuState
LoadMenuW
GetAsyncKeyState
LoadBitmapW
PeekMessageW
DispatchMessageW
ReleaseDC
GetDC
UnregisterClassW
GetClientRect
GetWindowLongW
GetDesktopWindow
DrawTextW
PostMessageW
MessageBoxW
UpdateWindow
SetTimer
PtInRect
GetSysColor
GetWindowContextHelpId
SetWindowContextHelpId
GetWindowRect
PostQuitMessage
GetWindowRgn
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
IsCharLowerW
GetDoubleClickTime
InvertRect
HideCaret
RedrawWindow
InvalidateRect
GetSystemMetrics
GetFocus
IsWindow
SendMessageW
CopyIcon
ModifyMenuW
CharUpperBuffW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetClassLongW
DestroyAcceleratorTable
SetWindowLongW
EnableWindow
DrawEdge
CreateAcceleratorTableW
ToUnicodeEx
DrawIconEx
InvalidateRgn
CopyAcceleratorTableW
CharNextW
PostThreadMessageW
LockWindowUpdate
GetDCEx
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
NotifyWinEvent
MessageBeep
SetWindowRgn
TrackMouseEvent
EnumDisplayMonitors
SetLayeredWindowAttributes
CopyImage
RealChildWindowFromPoint
DestroyCursor
SetCursorPos
WaitMessage
RegisterClipboardFormatW
CreateMenu
ShowOwnedPopups
SetMenu

gdi32

CreatePatternBrush
SetPixel
FloodFill
SetDIBitsToDevice
StretchDIBits
SetStretchBltMode
GetStockObject
ResetDCW
StartDocW
EndDoc
StartPage
EndPage
AbortDoc
StretchBlt
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
CreateDIBitmap
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
GetCharWidthW
EnumFontFamiliesExW
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreateDIBSection
GetRgnBox
CreateEllipticRgn
Ellipse
LPtoDP
CreatePolygonRgn
Polygon
RealizePalette
SetDIBColorTable
OffsetRgn
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
SetPixelV
GetTextFaceW
GetClipBox
ExcludeClipRect
Escape
CreateHatchBrush
SetPixelFormat
GetDeviceCaps
CreateBitmap
ChoosePixelFormat
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreatePen
Polyline
PolyPolyline
CreateSolidBrush
CreateRectRgn
SetTextColor
SetBkColor
SelectObject
GetTextColor
GetCurrentObject
GetBkColor
GetTextMetricsW
DeleteObject
RoundRect
DeleteDC
Rectangle
GetTextExtentPoint32W
CreateFontW
GetObjectW
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
OffsetViewportOrgEx
CreateFontIndirectW
CreateDCW
CopyMetaFileW
GetObjectType

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegOpenKeyExA
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegDeleteValueW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegSetValueW
RegCloseKey
RegQueryValueExA
IsTextUnicode
SetNamedSecurityInfoW
AddAce
InitializeAcl
CopySid
GetLengthSid
FreeSid
AllocateAndInitializeSid
IsValidSid

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
SHAddToRecentDocs
ExtractIconW
SHGetFileInfoW
DragAcceptFiles
DragFinish
DragQueryFileW
ShellExecuteW
SHGetFolderPathW
SHFileOperationW
SHBrowseForFolderW
SHGetPathFromIDListW
SHCreateDirectoryExW
SHAppBarMessage

comctl32

ImageList_SetBkColor
_TrackMouseEvent
ord17
ImageList_ReplaceIcon
ImageList_AddMasked

shlwapi

PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathFileExistsW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemeSysColor
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
DrawThemeParentBackground
DrawThemeText
GetThemeColor
GetCurrentThemeName

ole32

CoTaskMemFree
DoDragDrop
CoUninitialize
CoInitialize
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
CoRevokeClassObject
StringFromCLSID
CoDisconnectObject
CoTaskMemAlloc
OleDuplicateData
ReleaseStgMedium
CoInitializeEx
CoCreateGuid
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CLSIDFromString
CoGetClassObject
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoCreateInstance
CLSIDFromProgID

oleaut32

SafeArrayDestroy
VarBstrFromDate
OleCreateFontIndirect
SysStringLen
LoadTypeLi
SysAllocString
VariantChangeType
SysAllocStringLen
SysFreeString
VariantClear
VariantInit
SysAllocStringByteLen
VariantTimeToSystemTime
VariantCopy
SystemTimeToVariantTime

oledlg

OleUIBusyW

gdiplus

GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageI

tapi32

lineAnswer
lineClose
lineDeallocateCall
lineDrop
lineGetDevCapsW
lineGetIDW
lineInitializeExW
lineMakeCallW
lineNegotiateAPIVersion
lineOpenW
lineSetAppPriorityW
lineSetCallPrivilege
lineSetNumRings
lineSetStatusMessages
lineShutdown

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 610KB - Virtual size: 609KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 278KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e016bed3dfdfac505f512ec02558806

Headers

DLL Characteristics

File Characteristics

Imports

version

ws2_32

msimg32

opengl32

glu32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

tapi32

oleacc

imm32

winmm

Sections

.text Size: 2.1MB - Virtual size: 2.1MB

.rdata Size: 610KB - Virtual size: 609KB

.data Size: 278KB - Virtual size: 341KB

.rsrc Size: 217KB - Virtual size: 216KB

.text
Size: 2.1MB - Virtual size: 2.1MB

.rdata
Size: 610KB - Virtual size: 609KB

.data
Size: 278KB - Virtual size: 341KB

.rsrc
Size: 217KB - Virtual size: 216KB