2024-06-20_dfd56ea4684a024e56461b9e24c7eb87_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-20_dfd56ea4684a024e56461b9e24c7eb87_bkransomware
Size

1.9MB
MD5

dfd56ea4684a024e56461b9e24c7eb87
SHA1

6200a07e360e1e9bc3067e456416c5a6d3a5aa3e
SHA256

4d6fe71b20af14f03b57827ed6f7d1aa361e9b3d8d311e33e8acfc4cfade777b
SHA512

a403a17262715cca1728b3cdccafdce75008841bb355209840c8c92a649ab1fa528488f2fcccf948ca67cceeb1ba2f7712172812457e354a49bd74abcb7521c5
SSDEEP

49152:th0IJaRVga3iNlyMM/uRJV5k2ae//23xTw6ErFlhptaXXmU:QIJeVga3/MhRJV5k2aK/uuxrFlhptaX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-20_dfd56ea4684a024e56461b9e24c7eb87_bkransomware

Files

2024-06-20_dfd56ea4684a024e56461b9e24c7eb87_bkransomware
.exe windows:5 windows x86 arch:x86

07de1d8b435ed1179a6cf452a4fff912

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\ThangLVb\BViewer\BViewer-Team\BViewer1.0\UVNC Start\Release\UVNC Start.pdb

Imports

kernel32

GetCPInfo
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
GetOEMCP
GetModuleHandleExW
RtlUnwind
GetSystemTimeAsFileTime
LoadLibraryW
IsProcessorFeaturePresent
IsDebuggerPresent
FindResourceExW
VirtualProtect
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
IsValidCodePage
VerSetConditionMask
lstrcpyW
GetTickCount
GetFileTime
GetFileSizeEx
GetFileAttributesExW
ExitThread
GetACP
FileTimeToLocalFileTime
SetErrorMode
GetWindowsDirectoryW
lstrcmpiW
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
GetCurrentDirectoryW
GetThreadLocale
FileTimeToSystemTime
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalGetAtomNameW
GlobalFlags
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
ResumeThread
SuspendThread
SetThreadPriority
CreateEventW
SetEvent
GetPrivateProfileIntW
SetFilePointerEx
ReadConsoleW
VerifyVersionInfoW
GetConsoleMode
GetCurrentThread
lstrcmpA
GetCurrentProcessId
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
GetModuleHandleA
FreeResource
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
OutputDebugStringA
GetCurrentProcess
OutputDebugStringW
GetModuleFileNameW
CreateThread
GetCommandLineW
ExitProcess
CreateMutexW
Process32NextW
TerminateProcess
OpenProcess
Process32FirstW
CreateToolhelp32Snapshot
DeleteCriticalSection
DecodePointer
EnterCriticalSection
HeapSize
RaiseException
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
GetFileSize
FindClose
FindFirstFileW
SetFilePointer
GetFileAttributesW
DeleteFileW
CopyFileW
GetVersionExW
Sleep
WritePrivateProfileStringW
GetPrivateProfileStringW
ReadFile
WriteFile
SetNamedPipeHandleState
GetLastError
CreateFileW
CreateProcessW
CloseHandle
WaitForSingleObject
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
FreeLibrary
GetModuleHandleW
GetProcAddress
LoadLibraryExW

user32

LockWindowUpdate
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
IsZoomed
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
PostThreadMessageW
SetParent
UnionRect
GetKeyNameTextW
MapVirtualKeyW
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
GetIconInfo
DrawIconEx
DrawFocusRect
RegisterClipboardFormatW
ReuseDDElParam
UnpackDDElParam
SetRectEmpty
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
GetMenuDefaultItem
CreatePopupMenu
CharUpperW
DestroyIcon
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
IntersectRect
SetRect
InvalidateRgn
CopyAcceleratorTableW
OffsetRect
CharNextW
InvalidateRect
DeleteMenu
WindowFromPoint
ReleaseCapture
WaitMessage
CopyImage
RealChildWindowFromPoint
LoadCursorW
GetSysColorBrush
SystemParametersInfoW
InflateRect
GetMenuItemInfoW
DestroyMenu
SendDlgItemMessageA
SetCursor
ShowOwnedPopups
GetCursorPos
TranslateMessage
GetMessageW
FillRect
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
ToUnicodeEx
DrawTextExW
DrawTextW
LoadMenuW
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
GetWindowThreadProcessId
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
RemoveMenu
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
SetCursorPos
SetClassLongW
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuW
CharUpperBuffW
FrameRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetMenuState
GetMenuStringW
IsClipboardFormatAvailable
GetWindowRgn
DestroyCursor
CreateMenu
TabbedTextOutW
IsDialogMessageW
GetWindow
GetParent
SubtractRect
GrayStringW
GetUpdateRect
SetWindowLongW
GetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
IsWindowEnabled
GetFocus
SetFocus
GetDlgCtrlID
CheckDlgButton
SetDlgItemTextW
GetDlgItem
SetWindowPos
PostMessageW
SetDlgItemTextA
ExitWindowsEx
DrawIcon
GetClientRect
IsIconic
SendMessageW
AppendMenuW
GetSystemMenu
MoveWindow
GetWindowRect
GetDesktopWindow
MessageBoxW
GetSystemMetrics
LoadImageW
LoadIconW
SetForegroundWindow
ShowWindow
IsWindow
FindWindowW
UnregisterClassW
EnableWindow
KillTimer
SetTimer
SetCapture

gdi32

SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
CreateRoundRectRgn
PatBlt
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
SetROP2
SetPolyFillMode
GetLayout
GetMapMode
CombineRgn
GetRgnBox
CreateRectRgnIndirect
GetTextColor
GetBkColor
GetTextMetricsW
GetTextExtentPoint32W
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
TextOutW
MoveToEx
RoundRect
DeleteDC
SetLayout
SetMapMode
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
BitBlt
CreateBitmap
SetTextColor
SetBkColor
GetDeviceCaps
CreateDCW
CopyMetaFileW
CreateFontIndirectW
GetObjectW
SetTextAlign

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueW
RegEnumKeyW
RegOpenKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegCreateKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegEnumValueW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW

shell32

SHGetSpecialFolderPathW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
SHBrowseForFolderW
CommandLineToArgvW
ShellExecuteW
DragFinish
DragQueryFileW

comctl32

InitCommonControlsEx

shlwapi

SHDeleteKeyW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

CloseThemeData
GetWindowTheme
GetThemeSysColor
IsAppThemed
DrawThemeText
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
OpenThemeData
GetThemeColor
GetCurrentThemeName
GetThemePartSize

ole32

CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoCreateGuid
CoTaskMemAlloc
RevokeDragDrop
RegisterDragDrop
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
CoInitialize
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoInitializeEx
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
CreateStreamOnHGlobal
DoDragDrop
CoLockObjectExternal
OleGetClipboard
CoTaskMemFree
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning

oleaut32

SysAllocStringLen
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
SysAllocString
SysFreeString
VariantChangeType
VariantClear
VariantInit

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

iphlpapi

GetAdaptersInfo

ws2_32

inet_ntoa
freeaddrinfo
getaddrinfo
WSACleanup
closesocket
connect
gethostbyname
accept
listen
bind
htons
inet_addr
socket
WSAStartup
recv
send
WSAGetLastError

psapi

EnumProcesses
GetModuleBaseNameW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 339KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07de1d8b435ed1179a6cf452a4fff912

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

iphlpapi

ws2_32

psapi

oleacc

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 339KB - Virtual size: 339KB

.data Size: 26KB - Virtual size: 56KB

.rsrc Size: 113KB - Virtual size: 112KB

.reloc Size: 121KB - Virtual size: 121KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 339KB - Virtual size: 339KB

.data
Size: 26KB - Virtual size: 56KB

.rsrc
Size: 113KB - Virtual size: 112KB

.reloc
Size: 121KB - Virtual size: 121KB