2024-08-20_58dd8c1a54af47ad5791e632309e35bc_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-20_58dd8c1a54af47ad5791e632309e35bc_bkransomware
Size

588KB
MD5

58dd8c1a54af47ad5791e632309e35bc
SHA1

9fc43476d547f825cbc50770a4f76152bf56241b
SHA256

cc0f3dfffeb7eaf2a3c32f7f875f0ce2a6b9a350c23589ef60e625222148dbe6
SHA512

812f0dc10cb2ee89a08e9deb5aa741e8647e4b9d1797b97226235a939caf71671896160c06201617ce919ed2a93f09011493d91d4a9f8f9be58c23700dbc8a23
SSDEEP

12288:do09J9Jk5Tvy5/TKeb04s9/PbwgaEqILRMILk:d19RkNk/u+0Z/PkluL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-20_58dd8c1a54af47ad5791e632309e35bc_bkransomware

Files

2024-08-20_58dd8c1a54af47ad5791e632309e35bc_bkransomware
.exe windows:5 windows x86 arch:x86

0a74b371d1b6ca4ea8e09bfe72258f2a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDCPenColor
GetPolyFillMode
GetTextColor
GetBkColor
GetRandomRgn
GetStretchBltMode
GetTextCharacterExtra
GetTextCharset
GetSystemPaletteUse
GetTextAlign
SetTextAlign
GetDCBrushColor
GetMapMode
GetTextCharsetInfo
GetFontLanguageInfo
GetClipRgn
GetFontUnicodeRanges
GetPixelFormat
SetSystemPaletteUse
GetMetaRgn
SetTextJustification
SetTextCharacterExtra
SetTextColor
UpdateColors
GetCurrentObject
GetDeviceCaps

user32

GetKeyboardType
GetWindowLongA
GetMenuItemCount
GetCursor
PostMessageA
CheckDlgButton
IsWindowUnicode
GetDC
BeginPaint
GetMenuCheckMarkDimensions
ShowWindow
SetDlgItemTextA
LoadIconA
SendMessageA
GetDlgItemInt
GetMenuItemID
EndDialog
GetMenuContextHelpId
GetMenu
WindowFromDC
RemovePropA
GetWindowDC
GetDlgItem
DrawTextA
GetWindowContextHelpId
GetScrollPos
GetInputState
SetFocus
GetPropA
GetQueueStatus
EnableWindow
SetWindowTextA
GetForegroundWindow

kernel32

CreateProcessW
GetExitCodeProcess
WaitForSingleObject
CreateFileW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameW
PeekNamedPipe
GetFileInformationByHandle
FileTimeToLocalFileTime
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
HeapSize
WriteConsoleW
OutputDebugStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetModuleFileNameA
GetTimeZoneInformation
GetFullPathNameA
GetFileAttributesExW
ReadConsoleW
SetFilePointerEx
GetStringTypeW
SetStdHandle
GetFileType
SetEnvironmentVariableW
GetProcAddress
GetModuleHandleA
IsDebuggerPresent
GlobalSize
GlobalHandle
FlushFileBuffers
GetCurrentProcess
LocalFlags
MoveFileA
CloseHandle
GetCurrentThreadId
GetDriveTypeA
GlobalAlloc
GetTickCount
GetLastError
GetCurrentProcessId
SizeofResource
WriteFile
GetFileTime
GetVersion
DeleteFileA
IsProcessorFeaturePresent
SetFilePointer
LoadResource
LockResource
GlobalFlags
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
HeapReAlloc
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
DeleteCriticalSection
GetLocalTime
ReadFile
GetTempPathA
Beep
Sleep
GetCommandLineA
GetProcessHeap
GetStdHandle
GetModuleFileNameW
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
GetConsoleCP
GetConsoleMode
SetLastError
GetCurrentThread
FatalAppExitA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateEventW
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
CreateSemaphoreW
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
FindClose
FindFirstFileExW
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
DeleteFileW
RaiseException
SetEnvironmentVariableA
SetEndOfFile

Sections

.text
Size: 520KB - Virtual size: 519KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0a74b371d1b6ca4ea8e09bfe72258f2a

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 520KB - Virtual size: 519KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 23KB - Virtual size: 112KB

.text
Size: 520KB - Virtual size: 519KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 23KB - Virtual size: 112KB