2024-06-02_d5b2c830dd2ddccddee570f7ed895261_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-02_d5b2c830dd2ddccddee570f7ed895261_bkransomware
Size

1.3MB
MD5

d5b2c830dd2ddccddee570f7ed895261
SHA1

e4abcc4a5bc48f4ae5088eacf6a2bac300fea7fb
SHA256

ae66d30babb14fd5e08c67c04922f3d632a9ee86f959b8698e95bc96fe4b2871
SHA512

fd6b8b518be22f51e840cfb474065aec5b2daf0f35e0faaa706da49cba7d636ea2dab0ceb266705d317921a157870a46c3585701e6e65d149984610c21603894
SSDEEP

24576:QydOJ0/3hGC/qD4zC5GGs0pG8cB9ZZJTlse1jnY5aeQZC:Qa/RFSDgoG18c9ZZJTSUnsQZC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-02_d5b2c830dd2ddccddee570f7ed895261_bkransomware

Files

2024-06-02_d5b2c830dd2ddccddee570f7ed895261_bkransomware
.exe windows:5 windows x86 arch:x86

a204f2fe8540c8854f5312176be6be9a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\64DD\LuigiBlood\PJ64\project64-lb\bin\Release\pdb\Project64.pdb

Imports

kernel32

SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
CreateFileA
ExitThread
IsDebuggerPresent
DebugBreak
GetExitCodeThread
WaitForMultipleObjects
GetFileSize
WriteFile
ReadFile
SetFilePointer
lstrcmpiW
DeleteFileA
FindFirstChangeNotificationA
FindNextChangeNotification
FindCloseChangeNotification
SetErrorMode
WriteConsoleW
SetStdHandle
LCMapStringW
CompareStringW
GetConsoleCP
SetFilePointerEx
ReadConsoleW
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetFileType
GetStringTypeW
HeapSize
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
LoadLibraryExW
GetModuleFileNameW
GetStdHandle
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
GetFileTime
TlsAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCommandLineA
GetSystemTimeAsFileTime
GetTimeZoneInformation
VirtualQuery
GetSystemInfo
HeapReAlloc
AreFileApisANSI
GetModuleHandleExW
ExitProcess
EncodePointer
RtlUnwind
OutputDebugStringW
IsProcessorFeaturePresent
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
GetProcessHeap
HeapFree
HeapAlloc
CreateFileW
VirtualProtect
VirtualFree
VirtualAlloc
QueryPerformanceFrequency
QueryPerformanceCounter
Process32Next
Process32First
CreateToolhelp32Snapshot
TerminateProcess
GetCurrentProcessId
OpenProcess
SetThreadPriority
GetCurrentThread
SetEndOfFile
FlushFileBuffers
InitializeCriticalSection
CopyFileA
FindNextFileA
FindFirstFileA
GetFileAttributesA
SetFileAttributesA
CreateDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryA
FindClose
GetLocalTime
Sleep
LoadLibraryA
WideCharToMultiByte
MultiByteToWideChar
IsDBCSLeadByte
FindResourceA
GetModuleFileNameA
LoadLibraryExA
lstrcmpiA
SizeofResource
LoadResource
ResetEvent
CreateThread
GetProcAddress
FreeLibrary
InterlockedDecrement
InterlockedIncrement
DecodePointer
GetDateFormatA
GetTimeFormatA
GetLocaleInfoA
GetVersionExA
lstrlenA
GetTickCount
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
SetLastError
GetLastError
SetEnvironmentVariableA
GetCurrentThreadId
RaiseException
CreateEventA
CloseHandle
WaitForSingleObject
SetEvent
TerminateThread
GetCurrentProcess
FlushInstructionCache
GlobalUnlock
GlobalLock
GlobalAlloc
TlsGetValue
GetModuleHandleA

user32

GetWindowTextW
GetSysColorBrush
SetWindowLongW
BringWindowToTop
IsWindowVisible
CreateAcceleratorTableA
SetMenuItemInfoA
AppendMenuW
CreatePopupMenu
RemoveMenu
CreateMenu
TranslateAcceleratorA
DestroyAcceleratorTable
IsMenu
IsDlgButtonChecked
CheckDlgButton
LoadIconA
SetRect
ShowCursor
AdjustWindowRectEx
ValidateRect
SetMenu
GetMenu
IsZoomed
MsgWaitForMultipleObjects
MoveWindow
CreateWindowExW
RegisterClassA
DrawTextW
PostMessageW
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadImageA
MessageBoxW
SetWindowTextW
MessageBoxA
SendMessageA
SendMessageW
DialogBoxParamW
EndDialog
GetDlgItem
SendDlgItemMessageA
BeginPaint
EndPaint
GetClientRect
LoadBitmapA
DefWindowProcA
CreateDialogParamA
IsIconic
AdjustWindowRect
RemovePropA
GetPropA
SetPropA
SetMenuItemInfoW
GetMenuItemInfoW
IsWindowEnabled
SetDlgItemTextW
CreateDialogParamW
SetWindowPlacement
DeleteMenu
PostQuitMessage
InsertMenuW
CallWindowProcA
IsWindow
SetDlgItemTextA
GetDlgItemTextA
OpenClipboard
GetWindowPlacement
SetForegroundWindow
CharNextA
DialogBoxParamA
GetComboBoxInfo
SystemParametersInfoA
GetScrollInfo
SetScrollInfo
DestroyCursor
LoadCursorA
GetWindow
GetParent
PtInRect
EqualRect
IsRectEmpty
OffsetRect
IntersectRect
InflateRect
CopyRect
FrameRect
FillRect
GetSysColor
MapWindowPoints
ScreenToClient
ClientToScreen
SetCursor
GetWindowRect
GetWindowTextLengthA
GetScrollPos
SetScrollPos
RedrawWindow
InvalidateRect
SetWindowRgn
ReleaseDC
GetDC
DrawTextA
GetSystemMetrics
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetCapture
GetAsyncKeyState
GetKeyState
GetFocus
RegisterClipboardFormatA
GetDlgCtrlID
SetWindowPos
DestroyWindow
CreateWindowExA
GetClassInfoExA
RegisterClassExA
UnregisterClassA
PostMessageA
GetMessagePos
DrawFrameControl
GetCursorPos
TrackPopupMenu
GetSubMenu
DestroyMenu
LoadMenuA
ShowWindow
SetWindowLongA
GetWindowLongA
GetWindowTextA
SetWindowTextA
EnableWindow
SetFocus
IsClipboardFormatAvailable
GetClipboardData
SetClipboardData
CloseClipboard
GetDesktopWindow

gdi32

CombineRgn
CreateCompatibleBitmap
CreateFontIndirectA
CreateRectRgn
GetClipBox
GetTextExtentPoint32A
LineTo
RestoreDC
RoundRect
GetObjectA
SetBkColor
MoveToEx
ExtTextOutA
CreatePolygonRgn
SetViewportOrgEx
SetWindowOrgEx
OffsetWindowOrgEx
SetMapMode
SetTextColor
SelectObject
SetBkMode
Rectangle
GetStockObject
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateFontA
SaveDC
BitBlt
CreateCompatibleDC

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ole32

CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
ReleaseStgMedium
OleDuplicateData
DoDragDrop
RevokeDragDrop
RegisterDragDrop
CoUninitialize
CoInitialize
CoCreateInstance

oleaut32

VarUI4FromStr

comctl32

ord6
ImageList_AddMasked
ImageList_Create
_TrackMouseEvent
ImageList_GetIconSize
ImageList_LoadImageA
ImageList_DrawEx
PropertySheetA

msimg32

AlphaBlend
GradientFill

winmm

timeEndPeriod
timeBeginPeriod
timeGetDevCaps
timeGetTime

Sections

.text
Size: 846KB - Virtual size: 846KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a204f2fe8540c8854f5312176be6be9a

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

ole32

oleaut32

comctl32

msimg32

winmm

Sections

.text Size: 846KB - Virtual size: 846KB

.rdata Size: 171KB - Virtual size: 171KB

.data Size: 10KB - Virtual size: 162KB

.rsrc Size: 188KB - Virtual size: 188KB

.reloc Size: 69KB - Virtual size: 68KB

.text
Size: 846KB - Virtual size: 846KB

.rdata
Size: 171KB - Virtual size: 171KB

.data
Size: 10KB - Virtual size: 162KB

.rsrc
Size: 188KB - Virtual size: 188KB

.reloc
Size: 69KB - Virtual size: 68KB