2024-08-06_da6bc08a99afc438591d0622a743941d_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-06_da6bc08a99afc438591d0622a743941d_bkransomware
Size

576KB
MD5

da6bc08a99afc438591d0622a743941d
SHA1

a657e09378bc2d7ea1c82795a98232bd013f1ad9
SHA256

153d8e20cd68ab80ae55e3a54cb37798bf4a38ece8cec000af92657c7fcd8e49
SHA512

23013d02d84f740e3a2ea269dea4ff08580ca77aede962730bd11ffe5256b2f0e317d3a0edb19dbadd28aa832ebd159ab9f379f1d8a7229fadadbfa429c5df20
SSDEEP

6144:3zCEiwZci+ZCWtXTK4XrZ0s13/upbnCL6IoE5jAgJEubpBvJOwcQUsinJLUwv/D4:3sKci+ZtjxrzViZrEVMwcQUsinJN/o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-06_da6bc08a99afc438591d0622a743941d_bkransomware

Files

2024-08-06_da6bc08a99afc438591d0622a743941d_bkransomware
.exe windows:5 windows x86 arch:x86

0e7e805e19336dbc2709f16cfdf027b5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

UpdateColors
GetMapMode
GetSystemPaletteUse
GetDCBrushColor
GetTextCharset
GetFontLanguageInfo
GetNearestPaletteIndex
GetTextCharacterExtra
SetTextCharacterExtra
GetPolyFillMode
GetTextCharsetInfo
GetDCPenColor
GetStretchBltMode
GetFontUnicodeRanges
SetPixel
SetSystemPaletteUse
SetTextColor
GetNearestColor
GetRandomRgn
GetObjectType
SetTextAlign

user32

GetMenu
GetForegroundWindow
DrawTextA
SendMessageA
IsWindowUnicode
EnableWindow
ShowWindow
GetQueueStatus
GetInputState
GetWindowLongA
EndPaint
SetWindowTextA
MoveWindow
SetFocus
GetMenuCheckMarkDimensions
GetDlgItem
GetWindowDC
GetMenuState
BeginPaint
GetScrollPos
EndDialog
GetDialogBaseUnits
GetWindowContextHelpId
CallWindowProcA
LoadIconA
PostMessageA
IsWindowEnabled
SetDlgItemTextA
GetCursor
GetMenuContextHelpId
GetPropA
CheckDlgButton
GetDlgItemInt

kernel32

SetEndOfFile
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameW
PeekNamedPipe
GetFileInformationByHandle
FileTimeToLocalFileTime
WriteConsoleW
CreateFileW
CreateProcessW
SetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
HeapSize
OutputDebugStringW
GetModuleFileNameA
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
FindFirstFileExW
FindClose
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetEnvironmentVariableW
SetEnvironmentVariableA
RaiseException
CreatePipe
GetExitCodeProcess
GetProcAddress
DeleteFileA
GetProcessHeap
SizeofResource
GetTickCount
GetLastError
GetCurrentProcessId
GetModuleHandleA
GlobalHandle
GlobalAlloc
IsProcessorFeaturePresent
MoveFileA
GetCurrentThreadId
IsDebuggerPresent
LocalFlags
GetCurrentProcess
SetFilePointer
QueryPerformanceCounter
LoadResource
FindResourceA
GetDriveTypeA
FlushFileBuffers
CloseHandle
LockResource
GetFileTime
HeapFree
HeapAlloc
HeapReAlloc
GetSystemTimeAsFileTime
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
ReadFile
GetTempPathW
SetErrorMode
GetLocalTime
DuplicateHandle
CreateProcessA
GetTimeZoneInformation
GetCommandLineA
GetStdHandle
WriteFile
GetModuleFileNameW
SetLastError
GetCurrentThread
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FatalAppExitA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateEventW
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
CreateSemaphoreW
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetFileType
SetFilePointerEx
GetConsoleMode
ReadConsoleW
GetStringTypeW
GetFileAttributesExW
RtlUnwind
GetConsoleCP
GetFullPathNameA
WaitForSingleObject
DeleteFileW

Sections

.text
Size: 521KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0e7e805e19336dbc2709f16cfdf027b5

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 521KB - Virtual size: 520KB

.rdata Size: 31KB - Virtual size: 31KB

.data Size: 23KB - Virtual size: 53KB

.text
Size: 521KB - Virtual size: 520KB

.rdata
Size: 31KB - Virtual size: 31KB

.data
Size: 23KB - Virtual size: 53KB