2024-08-29_1fb6bc61c7538fe32c88454b5082b7dc_bkransomware

Sharing

Copy URL

Twitter E-mail

General

Target

2024-08-29_1fb6bc61c7538fe32c88454b5082b7dc_bkransomware
Size

6.7MB
MD5

1fb6bc61c7538fe32c88454b5082b7dc
SHA1

f6ec44e48875f748bf904042b16a971f10718019
SHA256

0520af236ff5b439c4a2922d70137b1b711cfc96224a5f979ab528ef232d74d2
SHA512

e3a96ee4d82c860f0b0a4224920ed0814a8d0480605cd6f9f346188716566fa5a369c4da94f8bd644f4ee769df714d80a791ec795489e9cd4a4eda940b326f27
SSDEEP

98304:8B3uSh5Xk0V3NO9uKdxJqjGK5LEGuxD8dTFyD3l4C/1sl/W4Yi5/MUJU:8B3l0+tExJqjzLEZwdxwaC/1GhYoMU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-29_1fb6bc61c7538fe32c88454b5082b7dc_bkransomware

Files

2024-08-29_1fb6bc61c7538fe32c88454b5082b7dc_bkransomware
.exe windows:6 windows x86 arch:x86

f9db13a038ec0202203d5c0ad2420bee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
ReleaseSemaphore
VirtualProtect
VirtualFree
VirtualAlloc
GetVersionExW
FreeLibraryAndExitThread
FreeLibrary
OutputDebugStringW
FreeEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
GetModuleFileNameW
GetFileType
GetStdHandle
GetCPInfo
IsDebuggerPresent
GetProcessHeap
HeapAlloc
HeapSize
MultiByteToWideChar
GetModuleHandleExW
LCMapStringW
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
SwitchToThread
SignalObjectAndWait
WaitForSingleObjectEx
SetEvent
CreateTimerQueue
ExitThread
CreateThread
CreateSemaphoreW
GetProcAddress
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsGetValue
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
RaiseException
HeapReAlloc
GetLastError
DecodePointer
GetStringTypeW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetFilePointerEx
LoadLibraryW
SetStdHandle
EnumSystemLocalesW
GetSystemTime
GetDateFormatW
GetOEMCP
CreateEventW
GlobalFree
SetLastError
IsDBCSLeadByteEx
GetACP
GetSystemDirectoryA
IsProcessorFeaturePresent
GetFileAttributesA
Sleep
IsValidLocale
OpenProcess
TlsSetValue
GetProcessTimes
SetCommTimeouts
ClearCommBreak
GetSystemTimeAsFileTime
GetTickCount
GetEnvironmentStringsW
WaitNamedPipeA
GetCommState
MapViewOfFile
GetLocaleInfoA
GetEnvironmentVariableW
GetCommandLineW
LocalFree
GetThreadTimes
TlsAlloc
GetModuleHandleA
FindNextFileA
EnterCriticalSection
IsValidCodePage
CreateNamedPipeA
CreateFileW
TerminateProcess
GetSystemTimeAdjustment
GetLocaleInfoW
WideCharToMultiByte
GetCommandLineA
SetCommState
ExpandEnvironmentStringsA
HeapFree
GetCurrentProcess
SetDllDirectoryW
LoadLibraryExW
ExitProcess
EncodePointer
DeleteCriticalSection
LeaveCriticalSection
GetExitCodeThread
CloseHandle
DuplicateHandle
WaitForSingleObject
GetCurrentThread
GetCurrentThreadId
WriteConsoleW

user32

CheckMenuItem
EndPaint
GetMessageA
SetWindowRgn
GetSystemMenu
GetMessageW
PostQuitMessage
IsIconic
SetKeyboardState
SetCapture
KillTimer
LoadStringA
DeleteMenu
LoadIconA
GetWindowInfo
CreateMenu
ShowCaret
CreateIconIndirect
DrawFocusRect
GetKeyboardState
InflateRect
GetWindowTextA
GetKeyboardLayout
GetScrollInfo
MessageBoxA
SetScrollPos
PeekMessageA
EnableMenuItem
DefWindowProcA
SetWindowsHookExA
DestroyCursor
DestroyCaret
CheckDlgButton
ShowWindow
DrawMenuBar
AppendMenuA
PostMessageA
FlashWindow
CreateWindowExW
MessageBoxW
SystemParametersInfoA
RegisterClassW
ValidateRgn
SendMessageW
UpdateWindow
EnableWindow
LoadCursorA
GetDlgItemTextA
DialogBoxParamA
ToUnicode
DrawFrameControl
SetDlgItemTextA
SetScrollInfo
ValidateRect
CopyRect
GetMessageTime
RegisterClassA
RemoveMenu
ShowOwnedPopups
ClientToScreen
DestroyAcceleratorTable
DrawIconEx
GetClientRect
GetWindowTextLengthA
WaitMessage
GetDC
GetQueueStatus
OffsetRect
SetPropA
CheckMenuRadioItem
InvalidateRect
ScrollWindow
EndDialog
GetDesktopWindow
SetMenu
IsDlgButtonChecked
GetSystemMetrics
DestroyIcon

gdi32

GetBitmapBits
ExtCreatePen
CreatePolygonRgn
SetLayout
GetWindowOrgEx
GetTextExtentPoint32A
StretchBlt
CreateFontIndirectA
SetDIBColorTable
ExcludeClipRect
SelectClipRgn
PtInRegion
CreateRectRgnIndirect
RectInRegion
Rectangle
RealizePalette
SetPolyFillMode
GetObjectW
GetTextExtentExPointA
CreateRectRgn
CreatePen
SetTextAlign
IntersectClipRect
CreateDIBitmap
GetStockObject
GetRgnBox
GetCharABCWidthsW
MoveToEx
BitBlt
GetMetaFileBitsEx
SetTextColor
Polygon
GetEnhMetaFileHeader
SetPixel
CreatePalette
SelectObject
GetPaletteEntries
ExtCreateRegion
CreateBitmapIndirect
GetDIBColorTable
GetCharWidth32A
GetTextExtentPointA
GetCharABCWidthsFloatA
GetSystemPaletteEntries
GetClipBox
GetPixel
ExtTextOutA
CloseEnhMetaFile
RestoreDC
CreateSolidBrush
SaveDC

advapi32

AdjustTokenPrivileges
RegDeleteValueA
SetSecurityDescriptorDacl
RegDeleteKeyA
RegQueryValueExW
EqualSid

shell32

ShellExecuteExW

ole32

CoTaskMemFree

Sections

.text
Size: 724KB - Virtual size: 724KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.iDdNz
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9db13a038ec0202203d5c0ad2420bee

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 724KB - Virtual size: 724KB

.data Size: 6.0MB - Virtual size: 6.0MB

.idata Size: 7KB - Virtual size: 6KB

.iDdNz Size: 3KB - Virtual size: 2KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 724KB - Virtual size: 724KB

.data
Size: 6.0MB - Virtual size: 6.0MB

.idata
Size: 7KB - Virtual size: 6KB

.iDdNz
Size: 3KB - Virtual size: 2KB

.reloc
Size: 14KB - Virtual size: 13KB