2024-07-26_94da142da391f41bbe3c38c43a08ac05_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-26_94da142da391f41bbe3c38c43a08ac05_bkransomware
Size

51.3MB
MD5

94da142da391f41bbe3c38c43a08ac05
SHA1

f41c7b040cb9466db6acc9e9c2423b55f14e264f
SHA256

3f27f167a6f31849a0b7ec94a3ed41ec1928c2bb98d798004baf33634b92c4fb
SHA512

447935e1c2eac6eee7ed69bd44c384a48beffea55f95066eda3315603ca7bb3f4e1839a55fdf3c622ca13f9fe603a6c2e8f92574482c9a93e93caffc32ab7ca6
SSDEEP

786432:aGxfcCRfCgimrDwn2zTTPAhHTMs5brjPrlO+g+1u:aGjfCVmfi2zTrAnBjP5Of

Score

1^/10

Malware Config

Signatures

Files

2024-07-26_94da142da391f41bbe3c38c43a08ac05_bkransomware
.exe windows:5 windows x86 arch:x86

0f8e3a2bb524d199879bedcdce10be56

Code Sign

4f:10:d7:4b:90:f8:68:58:b5:21:b2:6b:1a:7e:5a:ae
Certificate

Issuer

CN=APCPOptimaller Software Foundation,L=Oklahoma City,ST=Oklahoma,C=US

Not Before

10/09/2023, 21:00

Not After

11/09/2024, 21:00

Subject

CN=APCPOptimaller Software Foundation,L=Oklahoma City,ST=Oklahoma,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

3d:1a:9c:1d:1d:3d:a3:38:87:24:fe:27:30:6d:fa:cd:55:d1:b2:64:49:b4:e9:da:8d:97:27:d0:a3:a5:38:e4
Signer

Actual PE Digest

3d:1a:9c:1d:1d:3d:a3:38:87:24:fe:27:30:6d:fa:cd:55:d1:b2:64:49:b4:e9:da:8d:97:27:d0:a3:a5:38:e4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
VirtualAlloc
VirtualQuery
GetSystemTimeAsFileTime
SetStdHandle
GetStdHandle
GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetACP
GetOEMCP
ExitThread
GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
ReadConsoleW
SetFilePointerEx
FatalAppExitA
SetConsoleCtrlHandler
GetConsoleCP
OutputDebugStringW
WriteConsoleW
SetEnvironmentVariableA
CreateThread
IsProcessorFeaturePresent
IsDebuggerPresent
GetCommandLineW
LocalUnlock
LocalLock
FindResourceExW
GetUserDefaultLCID
ReplaceFileW
SizeofResource
GetDiskFreeSpaceW
VirtualProtect
GetProfileIntW
Sleep
HeapQueryInformation
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
lstrcpyW
GetWindowsDirectoryW
SetErrorMode
SetFileTime
SetFileAttributesW
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalFlags
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
SystemTimeToFileTime
FileTimeToSystemTime
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
GetVersionExW
GetCurrentThread
GetAtomNameW
GlobalGetAtomNameW
lstrcmpA
GetThreadLocale
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
AreFileApisANSI
RtlUnwind
GetModuleHandleExW
GetTempPathW
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
CreateSemaphoreW
WaitForMultipleObjects
CreateMutexW
ReleaseMutex
ReleaseSemaphore
SuspendThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CloseHandle
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
GetCurrentProcessId
GetModuleHandleA
GetModuleFileNameW
OutputDebugStringA
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalSize
GetCurrentDirectoryW
DecodePointer
HeapSize
GetLastError
RaiseException
HeapDestroy
HeapAlloc
HeapReAlloc
SearchPathW
SetFilePointer
GlobalUnlock
GlobalLock
FreeResource
GlobalAlloc
HeapFree
GetProcessHeap
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
TransactNamedPipe
SetDefaultCommConfigW
MoveFileExW
LockFileEx
GetWriteWatch
GetVolumeNameForVolumeMountPointA
GetTimeFormatEx
GetTimeFormatA
GetTempPathA
GetStringTypeW
GetNamedPipeHandleStateW
GetFileType
GetConsoleMode
FindNextVolumeA
FillConsoleOutputCharacterW
ExitProcess
GetTickCount
GetModuleHandleW
LoadLibraryW
FreeLibrary
WideCharToMultiByte
GetProcAddress
SetLastError
ReadFile
lstrcpyA
MultiByteToWideChar
GetExitCodeThread
ResumeThread
TerminateThread
FindResourceW
LoadResource
LockResource
GetCPInfo

user32

DrawIcon
WindowFromDC
GetTabbedTextExtentW
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
GetSystemMenu
IsZoomed
GetComboBoxInfo
TrackMouseEvent
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
SetWindowRgn
DrawFrameControl
DrawEdge
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
SetRectEmpty
DrawFocusRect
GetMenuDefaultItem
IsIconic
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
InvalidateRgn
CopyAcceleratorTableW
KillTimer
SetTimer
DeleteMenu
CopyImage
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
RealChildWindowFromPoint
GetDialogBaseUnits
GetSysColorBrush
CharNextW
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatW
PostQuitMessage
CharUpperW
MapVirtualKeyW
GetKeyNameTextW
IntersectRect
MsgWaitForMultipleObjectsEx
TranslateMessage
GetMessageW
LoadMenuW
SetMenuItemInfoW
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetTopWindow
GetClassNameW
GetClassLongW
GetWindowRgn
MapWindowPoints
CreateAcceleratorTableW
GetClientRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
GetForegroundWindow
UpdateWindow
TrackPopupMenuEx
SetMenu
GetMenu
GetKeyState
EndDeferWindowPos
DeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
IsDialogMessageW
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
ScrollWindowEx
GetFocus
SetFocus
GetDlgCtrlID
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
SendDlgItemMessageA
GetLastActivePopup
GetWindowThreadProcessId
ScreenToClient
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetParent
GetWindowLongW
SetActiveWindow
IsWindowEnabled
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetDCEx
CreateMenu
InSendMessage
SendNotifyMessageW
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
EnumChildWindows
FrameRect
CharUpperBuffW
ModifyMenuW
SetMenuDefaultItem
CopyIcon
GetDoubleClickTime
SetClassLongW
LockWindowUpdate
SetParent
SetCursorPos
EqualRect
DestroyAcceleratorTable
GetMenuStringW
UnregisterClassW
SetWindowPos
GetKeyboardState
AdjustWindowRectEx
ToUnicodeEx
TrackPopupMenu
SetForegroundWindow
CreatePopupMenu
LoadCursorW
SetLayeredWindowAttributes
PostThreadMessageW
GetDesktopWindow
GetWindow
BeginDeferWindowPos
IsWindow
GetMessagePos
SetScrollInfo
DrawIconEx
GetCursorPos
SetRect
GetScrollInfo
GetSystemMetrics
PtInRect
SetCursor
DrawStateW
OffsetRect
GetSysColor
InflateRect
CopyRect
ReleaseCapture
WindowFromPoint
ClientToScreen
SetCapture
GetCapture
GetActiveWindow
SendMessageW
LoadBitmapW
GetIconInfo
LoadImageW
DestroyCursor
DestroyIcon
MessageBoxW
InvalidateRect
IsWindowVisible
EnableWindow
FillRect
GetWindowRect
GetMenuCheckMarkDimensions

gdi32

TextOutW
SetTextCharacterExtra
ExtTextOutW
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetBkColor
GetTextColor
GetTextExtentPoint32W
GetTextMetricsW
GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetDIBits
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
MoveToEx
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
CreateRoundRectRgn
GetCurrentObject
CreateFontW
GetCharWidthW
StretchDIBits
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
CloseMetaFile
CreateMetaFileW
DeleteMetaFile
SetStretchBltMode
SetROP2
SetPolyFillMode
GetLayout
ExtCreatePen
SetArcDirection
SelectClipPath
PolyDraw
ArcTo
StartDocW
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
PlayMetaFileRecord
SetTextJustification
SetTextAlign
Polygon
CreateCompatibleDC
SetLayout
SetMapMode
SetGraphicsMode
SetMapperFlags
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
PlayMetaFile
OffsetClipRgn
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateDIBPatternBrushPt
CreateBitmap
BitBlt
GetDeviceCaps
CreateDCW
CopyMetaFileW
DeleteDC
CreateFontIndirectW
GetObjectW
DeleteObject
CreateCompatibleBitmap
SetTextColor

msimg32

AlphaBlend
TransparentBlt

winspool.drv

GetJobW
ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

GetFileSecurityW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegSetValueW
RegCloseKey
SetFileSecurityW

shell32

SHAppBarMessage
SHAddToRecentDocs
ExtractIconW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteW
SHGetMalloc
SHBrowseForFolderW
ShellExecuteExW
SHGetFileInfoW
DragFinish
DragQueryFileW

shlwapi

AssocQueryKeyA
PathIsPrefixW
PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
StrFormatKBSizeW
PathRemoveFileSpecW

uxtheme

GetThemeColor
GetThemePartSize
GetWindowTheme
GetThemeSysColor
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetCurrentThemeName

ole32

StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
CoDisconnectObject
StringFromGUID2
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleCreate
CoFreeUnusedLibraries
CoCreateGuid
CoUninitialize
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
StgOpenStorageOnILockBytes
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
WriteClassStm
CreateItemMoniker
CreateGenericComposite
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateFileMoniker
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
OleLockRunning
CreateILockBytesOnHGlobal
OleRun
CreateStreamOnHGlobal
CreateOleAdviseHolder
CreateDataAdviseHolder
GetRunningObjectTable
CoGetMalloc
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
OleRegEnumVerbs
OleRegGetMiscStatus
PropVariantCopy
GetHGlobalFromILockBytes
OleGetIconOfClass
OleSetContainedObject
OleSaveToStream
OleSave
OleLoad
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
ReadFmtUserTypeStg
OleCreateFromData
OleSetMenuDescriptor
DoDragDrop
OleInitialize
CoInitializeEx

oleaut32

SafeArrayGetDim
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysReAllocStringLen
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysAllocStringLen
VarDecFromStr
OleCreateFontIndirect

oledlg

OleUIBusyW

psapi

EnumProcessModulesEx
GetModuleBaseNameW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 632KB - Virtual size: 631KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47.7MB - Virtual size: 47.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f8e3a2bb524d199879bedcdce10be56

Code Sign

4f:10:d7:4b:90:f8:68:58:b5:21:b2:6b:1a:7e:5a:aeCertificate

Extended Key Usages

3d:1a:9c:1d:1d:3d:a3:38:87:24:fe:27:30:6d:fa:cd:55:d1:b2:64:49:b4:e9:da:8d:97:27:d0:a3:a5:38:e4Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oledlg

psapi

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.rdata Size: 632KB - Virtual size: 631KB

.data Size: 38KB - Virtual size: 136KB

.rsrc Size: 47.7MB - Virtual size: 47.7MB

.reloc Size: 208KB - Virtual size: 207KB

4f:10:d7:4b:90:f8:68:58:b5:21:b2:6b:1a:7e:5a:ae
Certificate

3d:1a:9c:1d:1d:3d:a3:38:87:24:fe:27:30:6d:fa:cd:55:d1:b2:64:49:b4:e9:da:8d:97:27:d0:a3:a5:38:e4
Signer

.text
Size: 2.7MB - Virtual size: 2.7MB

.rdata
Size: 632KB - Virtual size: 631KB

.data
Size: 38KB - Virtual size: 136KB

.rsrc
Size: 47.7MB - Virtual size: 47.7MB

.reloc
Size: 208KB - Virtual size: 207KB