2024-06-26_b16b5cbaf65dc3eb44f72059dbaadbcf_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-26_b16b5cbaf65dc3eb44f72059dbaadbcf_bkransomware
Size

2.1MB
MD5

b16b5cbaf65dc3eb44f72059dbaadbcf
SHA1

04dfb54cca471ea00f97b4497887884684a80d66
SHA256

1776c9deb56a995c5fbd636befe92a788a4ab9899a7aa5e76acf722f8b448e89
SHA512

2b0d8cc9a6a33006a0bae74409202bab63bd1f33b42d06c5a4c7a9a4ec21c928cd1e89c650f2bca073e9b073b8a0abcf5dfb6157e199144631a154976e49bfef
SSDEEP

49152:GpbMNqsk4k3qXz6L6b02uO11cKD5OwyEKR48ELlbxGcBNT:GBMrk33qXz6L6o2XHcKDRyEKR48ELlbZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-26_b16b5cbaf65dc3eb44f72059dbaadbcf_bkransomware

Files

2024-06-26_b16b5cbaf65dc3eb44f72059dbaadbcf_bkransomware
.exe windows:6 windows x86 arch:x86

f4505b2da815b9ef5f88ceb394dea547

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

a4wcompat

errlogAdd
a4wcompatGenRandom
cregGetString

a4wapi

ord445
ord606
ord2240
ord436
ord3700
ord3702
ord3703
ord3704
ord3701
ord263
ord254
ord1203
ord330
ord328
ord261
ord260
ord450
ord252
ord253
ord621
ord620
ord614
ord2411
ord2413
ord2414
ord2412
ord4002
ord529
ord1201
ord605

kernel32

EnumSystemLocalesW
IsValidLocale
LCMapStringW
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
ReleaseSemaphore
VirtualFree
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
SetEnvironmentVariableA
SwitchToThread
SignalObjectAndWait
WaitForSingleObjectEx
CreateTimerQueue
GetConsoleCP
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetTimeZoneInformation
OutputDebugStringW
GetStringTypeW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
CreateSemaphoreW
TerminateProcess
SetUnhandledExceptionFilter
SizeofResource
GetThreadPriority
Sleep
LockResource
LoadResource
FindResourceW
MultiByteToWideChar
WideCharToMultiByte
DeleteFileW
FindFirstFileW
FindNextFileW
GetLastError
FindClose
FormatMessageW
LocalFree
SetThreadLocale
LoadLibraryW
GlobalLock
GlobalUnlock
FindResourceExW
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSectionAndSpinCount
RaiseException
HeapSize
DecodePointer
DeleteCriticalSection
GetProcAddress
LoadLibraryA
FreeLibrary
GetTickCount
GetWindowsDirectoryA
GlobalAlloc
GetVolumeInformationA
GetEnvironmentVariableA
GlobalFree
GlobalHandle
lstrlenA
FormatMessageA
FindFirstFileA
LocalAlloc
GetShortPathNameA
OutputDebugStringA
EncodePointer
SetLastError
EnterCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
ExitThread
CreateThread
RtlUnwind
GetSystemTimeAsFileTime
WriteConsoleW
GetFileType
GetStdHandle
AreFileApisANSI
GetModuleHandleExW
GetCurrentThreadId
GetSystemDirectoryW
FreeResource
ExitProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetCommandLineW
VirtualProtect
GetUserDefaultLCID
GetProfileIntW
SearchPathW
GetTempPathW
GetTempFileNameW
GetWindowsDirectoryW
VerifyVersionInfoW
lstrcpyW
VerSetConditionMask
SetErrorMode
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
lstrcmpiW
GetCurrentDirectoryW
GetThreadLocale
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalGetAtomNameW
FileTimeToSystemTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
CreateFileW
ResumeThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CloseHandle
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
lstrcmpA
GetVersionExW
GetCurrentThread
GetCurrentProcessId
CopyFileW
MulDiv
GlobalSize
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW

user32

ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
ModifyMenuW
CharUpperBuffW
EmptyClipboard
SetClipboardData
SetClassLongW
LockWindowUpdate
BringWindowToTop
SetParent
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFrameControl
DrawEdge
InvertRect
HideCaret
GetIconInfo
DrawIconEx
DrawFocusRect
RegisterClipboardFormatW
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
WindowFromPoint
SetWindowRgn
GetSystemMenu
GetAsyncKeyState
IsZoomed
TrackMouseEvent
EnumDisplayMonitors
SetRectEmpty
SetLayeredWindowAttributes
CharUpperW
DestroyIcon
IsClipboardFormatAvailable
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
SetRect
InvalidateRgn
CopyAcceleratorTableW
ReleaseCapture
SetCapture
CharNextW
KillTimer
CopyIcon
DeleteMenu
RealChildWindowFromPoint
LoadCursorW
GetSysColorBrush
CopyImage
DrawStateW
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
IntersectRect
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
ReleaseDC
GetDC
MapVirtualKeyW
GetKeyNameTextW
SendDlgItemMessageA
GetMessageW
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
IsDialogMessageW
SetWindowTextW
EnableWindow
LoadAcceleratorsW
TranslateAcceleratorW
LoadImageW
SendMessageW
CheckDlgButton
MoveWindow
ShowWindow
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
GetWindowThreadProcessId
IsWindowEnabled
SetCursor
FrameRect
PostThreadMessageW
WaitMessage
GetComboBoxInfo
IsCharLowerW
MapVirtualKeyExW
GetDoubleClickTime
DrawMenuBar
DefFrameProcW
TranslateMDISysAccel
GetUpdateRect
SubtractRect
ShowOwnedPopups
RemoveMenu
CreateMenu
DestroyCursor
GetWindowRgn
SetTimer
GetWindowRect
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetFocus
IsWindow
RedrawWindow
wsprintfW
GetWindowLongW
SetWindowLongW
InvalidateRect
CopyRect
FillRect
InflateRect
GetSysColor
GetParent
ShowScrollBar
TranslateMessage
DispatchMessageW
PostMessageW
OpenClipboard
CloseClipboard
LoadMenuW
GetSubMenu
GetCursorPos
EnableMenuItem
PtInRect
OffsetRect
UnregisterClassW
LoadStringA
RegisterWindowMessageW
DefMDIChildProcW
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetDlgItem
GetDlgCtrlID
SetFocus
GetKeyState
GetCapture
GetMenu
SetMenu
GetMenuItemID
GetMenuItemCount
TrackPopupMenu
UpdateWindow
SetActiveWindow
GetForegroundWindow
SetForegroundWindow
ValidateRect
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
SetPropW
GetPropW
RemovePropW
GetWindowTextW
GetWindowTextLengthW
AdjustWindowRectEx
MessageBoxW
ScreenToClient
MapWindowPoints
EqualRect
GetClassLongW
GetClassNameW
GetTopWindow
GetLastActivePopup
GetWindow
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
AppendMenuW
InsertMenuW
GetMenuState
GetMenuStringW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW

gdi32

SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
GetMapMode
SetRectRgn
SelectObject
GetBkColor
GetTextColor
GetRgnBox
GetTextMetricsW
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreateDIBSection
CreatePalette
SetBkMode
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
SetPixel
StretchBlt
SetDIBColorTable
OffsetRgn
Rectangle
EnumFontFamiliesExW
RoundRect
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
SetPixelV
GetTextFaceW
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetTextExtentPoint32W
SetBkColor
SetTextColor
GetNearestPaletteIndex
SelectPalette
GetObjectW
CopyMetaFileW
CreateDCW
GetDeviceCaps
CreateBitmap
CreateRectRgnIndirect
PatBlt
BitBlt
CreateCompatibleDC
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
GetObjectType
Escape
ExcludeClipRect
GetClipBox
DPtoLP

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegSetValueExA
RegCreateKeyExA
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegQueryInfoKeyA

shell32

SHGetFileInfoW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHAppBarMessage

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathFindExtensionW
PathRemoveFileSpecW

uxtheme

GetThemeSysColor
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetWindowTheme

ole32

OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
CoRegisterMessageFilter
CoRevokeClassObject
CreateStreamOnHGlobal
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromString
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitializeEx
OleRun
CoCreateInstance
CoUninitialize
CoInitialize
CLSIDFromProgID

oleaut32

VariantInit
VariantClear
VariantChangeType
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysStringLen
VariantCopy
VarBstrFromDate
LoadTypeLi
OleCreateFontIndirect
SysAllocString
SysFreeString
SysAllocStringLen
GetErrorInfo

oledlg

OleUIBusyW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipDrawImageI
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetInterpolationMode
GdipDrawImageRectI

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4505b2da815b9ef5f88ceb394dea547

Headers

DLL Characteristics

File Characteristics

Imports

a4wcompat

a4wapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

winmm

version

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 366KB - Virtual size: 366KB

.data Size: 32KB - Virtual size: 63KB

.rsrc Size: 44KB - Virtual size: 44KB

.reloc Size: 133KB - Virtual size: 133KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 366KB - Virtual size: 366KB

.data
Size: 32KB - Virtual size: 63KB

.rsrc
Size: 44KB - Virtual size: 44KB

.reloc
Size: 133KB - Virtual size: 133KB