2024-08-16_764f8ccb5b648ac1400ef1dd2c0f125e_bkransomware_karagany | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-16_764f8ccb5b648ac1400ef1dd2c0f125e_bkransomware_karagany
Size

2.6MB
MD5

764f8ccb5b648ac1400ef1dd2c0f125e
SHA1

0fd1a12deaaaf0fa4a55877cbadfc2cb757a045d
SHA256

54fa7f24fbfde0ba0a57ab6c1aa447c5c49beb445da8b193c26b74c2e061b528
SHA512

b63c49ae5de23db79edb3aac1861f21f56a34a780bc78179972065a2f70f638b31f99361ccc190fff13361752e9dbee9a4646038a329aefac74fa2ec1ea20f4d
SSDEEP

49152:TSmDtaUrk1yqcY/B8xmN3Aek03noj45wlDT:WCIILceUJF3noxD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-16_764f8ccb5b648ac1400ef1dd2c0f125e_bkransomware_karagany

Files

2024-08-16_764f8ccb5b648ac1400ef1dd2c0f125e_bkransomware_karagany
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ