2024-06-24_778c123d0b3fc8468e7cf03001ad87a8_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-24_778c123d0b3fc8468e7cf03001ad87a8_bkransomware
Size

1.8MB
MD5

778c123d0b3fc8468e7cf03001ad87a8
SHA1

d049d0e30c82eaa7248c1d936cce0365ccc2f546
SHA256

301fbbdfb61aa38b564883ad5dae453a495367e755d590c2c7d5ec63ff58dcad
SHA512

c06e1a0810e84e2a3c26ff3ece8d0caede5ac37cd543c42b657b2e5875d29336654f9f7e22a173d9a6f09c9e1345d2b311a05e07b2a712c6c81e13bb59c6ecd6
SSDEEP

49152:8a2llEZXKo+gbBib1XFWhZ7Vtme1UeyCMX4tE:8a2YEXnWhVT/O4t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-24_778c123d0b3fc8468e7cf03001ad87a8_bkransomware

Files

2024-06-24_778c123d0b3fc8468e7cf03001ad87a8_bkransomware
.exe windows:6 windows x86 arch:x86

8875955974e3179d66c65fab9f88b2da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
RtlUnwind
GetConsoleMode
ReadConsoleW
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetConsoleCP
FlushFileBuffers
DeleteFileW
OutputDebugStringW
IsProcessorFeaturePresent
SetFilePointerEx
HeapSize
LCMapStringW
GetStringTypeW
WriteConsoleW
CreateFileW
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameW
GetStartupInfoW
DeleteCriticalSection
GetCurrentThreadId
SetLastError
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
GetModuleHandleExW
DecodePointer
EncodePointer
GetProcessHeap
HeapFree
HeapReAlloc
HeapAlloc
GetTempFileNameA
GetTempPathA
SetEndOfFile
GetStdHandle
GetFileSize
GetFileType
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
LocalSize
lstrcmpiA
GlobalReAlloc
GetFileAttributesA
lstrcmpA
lstrcpynA
MulDiv
FreeLibrary
SetEnvironmentVariableA
GetEnvironmentVariableA
GetShortPathNameA
MoveFileA
GetSystemDirectoryA
GetCommandLineA
GetFullPathNameA
FindNextFileA
FileTimeToDosDateTime
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
SetFileAttributesA
RaiseException
ExitProcess
FormatMessageA
GetDriveTypeA
SetErrorMode
GetVolumeInformationA
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetLocalTime
CopyFileA
CreatePipe
SetHandleInformation
LocalAlloc
lstrcatA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
TerminateProcess
WriteFile
GetDiskFreeSpaceA
GetCurrentProcess
GetModuleFileNameA
CreateFileA
ReadFile
SetFilePointer
CloseHandle
LocalFree
FindResourceA
LoadResource
LockResource
SizeofResource
GlobalLock
GlobalUnlock
GetLastError
GetVersionExA
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetCurrentDirectoryA
lstrlenA
SetCurrentDirectoryA
GlobalFree
GlobalAlloc
lstrcpyA
GetLocaleInfoA
SetStdHandle
GetTickCount

user32

DrawMenuBar
DeleteMenu
InsertMenuA
SetMenuItemInfoA
CheckMenuItem
CreateMenu
CreateAcceleratorTableA
CloseClipboard
GetClipboardData
OpenClipboard
IsClipboardFormatAvailable
SetClipboardData
EmptyClipboard
SetScrollPos
MoveWindow
PostMessageA
EndPaint
BeginPaint
GetCaretPos
AdjustWindowRect
ShowCaret
HideCaret
InsertMenuItemA
GetClassNameA
ArrangeIconicWindows
LoadStringA
GetMessageTime
KillTimer
SetTimer
IsDialogMessageA
TranslateAcceleratorA
GetMenuItemCount
GetMenuItemInfoA
GetMenuStringA
FillRect
SetParent
GetUpdateRect
GetSystemMenu
EnableMenuItem
GetActiveWindow
ChildWindowFromPoint
ScreenToClient
GetMenuState
SetMenuDefaultItem
TrackPopupMenu
GetMessagePos
PtInRect
CreateDialogIndirectParamA
GetNextDlgTabItem
CreateIconIndirect
IsDlgButtonChecked
GetWindowTextLengthA
GetWindowTextA
SendDlgItemMessageA
SetDlgItemTextA
CheckDlgButton
GetDlgCtrlID
MapDialogRect
GetDlgItem
GetClassLongA
DestroyIcon
OffsetRect
ScrollWindowEx
DestroyAcceleratorTable
IsWindowVisible
CreatePopupMenu
UnregisterClassA
LoadIconA
SetWindowTextA
RegisterWindowMessageA
LoadAcceleratorsA
ValidateRgn
GetSysColor
RegisterClipboardFormatA
CreateDialogParamA
wsprintfA
MessageBoxA
PeekMessageA
ValidateRect
GetKeyState
SetCapture
ReleaseCapture
DefWindowProcA
CallWindowProcA
GetMenu
GetWindowPlacement
SetWindowPlacement
InvalidateRect
GetParent
AdjustWindowRectEx
SetWindowPos
SetScrollInfo
RedrawWindow
GetClassInfoA
GetSysColorBrush
RegisterClassA
SetMenu
DestroyMenu
DestroyWindow
IsIconic
GetClientRect
IsZoomed
GetWindowRect
MapWindowPoints
CreateWindowExA
SetWindowLongA
GetFocus
ShowWindow
UpdateWindow
EnableWindow
GetMessageA
TranslateMessage
DispatchMessageA
SetActiveWindow
LoadImageA
GetScrollInfo
GetSystemMetrics
SetFocus
IsChild
SendMessageA
ClientToScreen
SetCursor
GetClassWord
GetWindow
GetWindowLongA
WindowFromPoint
GetCursorPos
LoadCursorA
ReleaseDC
GetDC
GetDesktopWindow
MessageBeep
AppendMenuA
GetSubMenu
FindWindowA
BringWindowToTop
SystemParametersInfoA
SetCursorPos
LoadMenuA

gdi32

SetWorldTransform
SetGraphicsMode
CreatePalette
SetTextAlign
FillRgn
CreateRectRgn
LineTo
CreatePen
GetCurrentPositionEx
TextOutA
MoveToEx
SetBkColor
SetTextColor
GetTextExtentPointA
GetTextMetricsA
CreateFontA
DeleteEnhMetaFile
SetEnhMetaFileBits
CopyEnhMetaFileA
CloseEnhMetaFile
GetObjectA
CreateBitmap
ExtTextOutA
SetMapMode
GetMapMode
CreateICA
Ellipse
SelectClipRgn
AngleArc
StrokeAndFillPath
EndPath
BeginPath
GetPixel
GetTextExtentPoint32A
Polyline
ExtCreatePen
CreatePatternBrush
SetPaletteEntries
UnrealizeObject
CreateFontIndirectA
EndDoc
EndPage
SetWindowExtEx
SetWindowOrgEx
StartPage
StartDocA
CreateDCA
GetTextFaceA
IntersectClipRect
CreateEnhMetaFileA
PlayEnhMetaFile
SetDIBits
CreateMetaFileA
DeleteMetaFile
GetMetaFileBitsEx
CopyMetaFileA
CloseMetaFile
RestoreDC
PlayMetaFile
SetViewportExtEx
SetViewportOrgEx
ScaleViewportExtEx
SaveDC
SetMetaFileBitsEx
SetPixel
GetDIBits
SetStretchBltMode
StretchBlt
CreateDIBSection
CreateCompatibleBitmap
SetBkMode
RealizePalette
BitBlt
StretchDIBits
CreateCompatibleDC
GetStockObject
SelectPalette
GetNearestPaletteIndex
GetNearestColor
CreateSolidBrush
SetROP2
Rectangle
DeleteObject
SelectObject
Polygon
DeleteDC
GetDeviceCaps

comdlg32

ReplaceTextA
ChooseFontA
ChooseColorA
PrintDlgA
PageSetupDlgA
GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError
FindTextA

winspool.drv

DocumentPropertiesA
ClosePrinter
ord201
DeviceCapabilitiesA
OpenPrinterA

winmm

mciGetErrorStringA
mciSendStringA
PlaySoundA
mciSendCommandA

shell32

SHBrowseForFolderA
SHGetMalloc
FindExecutableA
SHGetPathFromIDListA

advapi32

FreeSid
GetUserNameA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA
RegDeleteKeyA
RegCloseKey
AllocateAndInitializeSid

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.eh_fram
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug_l
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8875955974e3179d66c65fab9f88b2da

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

winmm

shell32

advapi32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 108KB - Virtual size: 107KB

.data Size: 53KB - Virtual size: 328KB

.rodata Size: 67KB - Virtual size: 67KB

.eh_fram Size: 512B - Virtual size: 76B

.debug_l Size: 34KB - Virtual size: 33KB

.rsrc Size: 80KB - Virtual size: 80KB

.reloc Size: 72KB - Virtual size: 72KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 108KB - Virtual size: 107KB

.data
Size: 53KB - Virtual size: 328KB

.rodata
Size: 67KB - Virtual size: 67KB

.eh_fram
Size: 512B - Virtual size: 76B

.debug_l
Size: 34KB - Virtual size: 33KB

.rsrc
Size: 80KB - Virtual size: 80KB

.reloc
Size: 72KB - Virtual size: 72KB