2024-06-10_2235cff75bdfb39c050afeb07fce3037_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-10_2235cff75bdfb39c050afeb07fce3037_bkransomware
Size

6.7MB
MD5

2235cff75bdfb39c050afeb07fce3037
SHA1

304ef36a3d5cbd4516169071e3c5daabca1c58a0
SHA256

79b3db2a095a8af7e5ed55c328dd59ce5fddc7dc6986a8d828e54cdf1dac90b0
SHA512

f5f3e2bd23c0ffae9d2fed15aad487bb69fe8184f9f53cb6ebed6ea43336a184572b9071121914c9142d1e06abea0bf4722523453fcf376b869a8d93ac8f7870
SSDEEP

196608:uaIDxnr+prsN8tBkaPpK/C+tfdfo4lHwfDVxp:G5lN6qaPM/CX4Cfxj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-10_2235cff75bdfb39c050afeb07fce3037_bkransomware

Files

2024-06-10_2235cff75bdfb39c050afeb07fce3037_bkransomware
.exe windows:6 windows x86 arch:x86

0d959b963c54baef7c174c4e877a8cae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitNamedPipeA
GetSystemTimeAsFileTime
TlsSetValue
SizeofResource
GetVersionExW
lstrcpynW
GetTempPathW
CreateNamedPipeA
QueryDosDeviceW
GetThreadPriority
WinExec
FileTimeToLocalFileTime
Sleep
WriteConsoleW
SetStdHandle
LoadLibraryW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
FlushFileBuffers
SetDllDirectoryW
LCMapStringW
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
ReleaseSemaphore
VirtualProtect
VirtualFree
VirtualAlloc
GetModuleHandleA
FreeLibraryAndExitThread
FreeLibrary
GetThreadTimes
SystemTimeToTzSpecificLocalTime
SetEndOfFile
GetCPInfo
RtlCaptureContext
GetFileSize
GetTempFileNameW
GetCommandLineW
SwitchToThread
DeleteFileA
TlsFree
GetWindowsDirectoryW
GetStringTypeW
GetModuleFileNameA
CreatePipe
LoadLibraryA
GetSystemDirectoryA
GetFileAttributesA
HeapCreate
GetWindowsDirectoryA
SignalObjectAndWait
WaitForSingleObject
GetModuleHandleExW
SetEnvironmentVariableW
VirtualQuery
GetDriveTypeW
FindFirstFileW
OutputDebugStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
CreateFileW
QueryPerformanceCounter
WriteFile
CloseHandle
DuplicateHandle
GetCurrentProcess
GetCurrentThread
GetCurrentThreadId
GetExitCodeThread
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
GetLastError
HeapReAlloc
RaiseException
RtlUnwind
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TerminateProcess
TlsAlloc
TlsGetValue
GetStartupInfoW
GetTickCount
GetModuleHandleW
GetProcAddress
CreateSemaphoreW
CreateThread
ExitThread
LoadLibraryExW
HeapFree
CreateTimerQueue
SetEvent
WaitForSingleObjectEx
SetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
ExitProcess
MultiByteToWideChar
WideCharToMultiByte
HeapSize
HeapAlloc
GetProcessHeap
IsDebuggerPresent
IsValidCodePage
GetACP
GetOEMCP
GetStdHandle
GetFileType
GetModuleFileNameW

user32

GetMessageW
ShowWindow
CreateWindowExW
SendMessageW
UpdateWindow
CharLowerBuffW
DrawTextExW
CheckMenuRadioItem
GetWindowLongW
GetClassNameW
CharUpperBuffW
DrawMenuBar
EnableScrollBar
InsertMenuW
MessageBoxW
EndMenu
DrawFrameControl
CopyRect
GetDlgItemInt
GetSubMenu
GetWindowInfo
GetDC
CreateDialogIndirectParamA
GetMenu
MonitorFromWindow
GetDesktopWindow
DestroyMenu
ToUnicode
DestroyIcon
SetWindowLongW

gdi32

SetTextColor
CreateHatchBrush
CreateFontIndirectW
GetRgnBox
GetEnhMetaFileHeader
StretchDIBits
GetObjectW
GetCharABCWidthsW
CreatePatternBrush
SetViewportExtEx
SetROP2
SetViewportOrgEx
OffsetRgn
ExtCreateRegion
GetTextExtentPointW
GetBkColor
CreatePolygonRgn

advapi32

RegCloseKey
ChangeServiceConfigW
StartServiceW
SetSecurityDescriptorDacl
CloseServiceHandle
RegLoadKeyW
OpenSCManagerW
RegUnLoadKeyW

shell32

ShellExecuteExW

oleaut32

VariantChangeType
SafeArrayCreate
VariantClear
SafeArrayGetLBound
SysReAllocStringLen
VariantInit

Sections

.text
Size: 694KB - Virtual size: 693KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d959b963c54baef7c174c4e877a8cae

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

Sections

.text Size: 694KB - Virtual size: 693KB

.data Size: 6.0MB - Virtual size: 6.0MB

.idata Size: 5KB - Virtual size: 5KB

.reloc Size: 15KB - Virtual size: 14KB

.text
Size: 694KB - Virtual size: 693KB

.data
Size: 6.0MB - Virtual size: 6.0MB

.idata
Size: 5KB - Virtual size: 5KB

.reloc
Size: 15KB - Virtual size: 14KB