2024-09-03_efe7ea34bb6d1146e292330c5c6280fe_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-03_efe7ea34bb6d1146e292330c5c6280fe_bkransomware
Size

496KB
MD5

efe7ea34bb6d1146e292330c5c6280fe
SHA1

7e9b91338e4ff9299be9a9b9694810393c7f5c76
SHA256

99ee0cffaf39d4638af40a088b8cd3decf8c9749a38b272c45420f0a05d8d99c
SHA512

5478336971fb861ce0c11fbad54f6afc911c2f645670e0ef73b94217c2f5ba726e1c40f84d48c6b486cff7f8e405c09cb19bb173cd263ca29ae5517636067505
SSDEEP

6144:aGjtElm3J7OR95ysFGNvK4GuRJJ9wiB3+y5zjcLPrQBj5UWrXr0:Ho0NOR95IvK4pRJwSzjcLPrQTUcr0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-03_efe7ea34bb6d1146e292330c5c6280fe_bkransomware

Files

2024-09-03_efe7ea34bb6d1146e292330c5c6280fe_bkransomware
.exe windows:5 windows x86 arch:x86

c1d19212f41038237115e6428028492e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextCharacterExtra
GetFontLanguageInfo
GetGraphicsMode
GetSystemPaletteUse
GetNearestColor
GetStretchBltMode
UpdateColors
GetPixelFormat
GetMapMode
SetTextCharacterExtra
SetPixel

user32

GetMenu
GetDC
CheckDlgButton
GetWindowContextHelpId
WindowFromDC
GetForegroundWindow
EndDialog
GetDlgItem
GetMenuContextHelpId
LoadIconA
BeginPaint
GetMenuCheckMarkDimensions
MoveWindow
RemovePropA
GetInputState
GetQueueStatus
GetMenuItemCount
GetKeyboardType
IsWindowUnicode
EnableWindow
EndPaint
GetDialogBaseUnits
SetDlgItemTextA
GetCursor
GetScrollPos

kernel32

GetFullPathNameA
ReadConsoleW
ReadFile
SetEndOfFile
GetTimeZoneInformation
CreateFileW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameW
PeekNamedPipe
GetFileInformationByHandle
FileTimeToLocalFileTime
FlushFileBuffers
WriteConsoleW
SetStdHandle
SetFilePointerEx
GetStringTypeW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
HeapSize
GetProcAddress
GetLastError
GetTickCount
GetCurrentThreadId
IsProcessorFeaturePresent
GetFileTime
GetStdHandle
QueryPerformanceCounter
GetCurrentProcessId
DeleteFileA
GetFileType
SetFilePointer
IsDebuggerPresent
LocalFlags
GetVersion
CloseHandle
LockResource
SizeofResource
GetModuleHandleA
HeapFree
HeapAlloc
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
GetProcessHeap
WriteFile
GetModuleFileNameW
SetLastError
GetCurrentThread
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FatalAppExitA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateEventW
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
CreateSemaphoreW
SetConsoleCtrlHandler
FreeLibrary
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
GetConsoleCP
GetConsoleMode
FindClose
FindFirstFileExW
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
OutputDebugStringW
SetEnvironmentVariableA

Sections

.text
Size: 432KB - Virtual size: 432KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c1d19212f41038237115e6428028492e

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

Sections

.text Size: 432KB - Virtual size: 432KB

.rdata Size: 25KB - Virtual size: 24KB

.data Size: 38KB - Virtual size: 209KB

.text
Size: 432KB - Virtual size: 432KB

.rdata
Size: 25KB - Virtual size: 24KB

.data
Size: 38KB - Virtual size: 209KB