2024-09-07_7d00023ceef9ef54d0f55a3f84ba4a15_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_7d00023ceef9ef54d0f55a3f84ba4a15_bkransomware
Size

6.6MB
MD5

7d00023ceef9ef54d0f55a3f84ba4a15
SHA1

3ad394fb61dec8b1aba5a049dfdf54ccd4358767
SHA256

6c39082e3053e6edfb91745ae1c8f326a0ce14e4e4b3778ea9d978968e7b5729
SHA512

91d28a5c20a811f05affbb8104f214a31abf6891cc921a752678048a99ce2121549957c14fedfb5319b792ac5e55594e93d4845ec7ad87cf7f25db8275ac9818
SSDEEP

196608:I3D5YRd3VKY1TMjDp+UPIubnOpFZwT47:kYX3VK+TMj8UjnU9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-07_7d00023ceef9ef54d0f55a3f84ba4a15_bkransomware

Files

2024-09-07_7d00023ceef9ef54d0f55a3f84ba4a15_bkransomware
.exe windows:6 windows x86 arch:x86

02da52fcd1b76e497385827ee097b70d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeSListHead
ReleaseSemaphore
VirtualProtect
VirtualFree
VirtualAlloc
GetVersionExW
FreeLibraryAndExitThread
FreeLibrary
OutputDebugStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
WriteFile
GetFileType
GetStdHandle
GetCPInfo
GetOEMCP
IsValidCodePage
IsDebuggerPresent
GetProcessHeap
HeapAlloc
HeapSize
WideCharToMultiByte
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
InterlockedPopEntrySList
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
SwitchToThread
SignalObjectAndWait
WaitForSingleObjectEx
SetEvent
CreateTimerQueue
HeapFree
ExitThread
CreateSemaphoreW
GetProcAddress
GetModuleHandleW
GetTickCount
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TerminateProcess
CreateEventW
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsProcessorFeaturePresent
RtlUnwind
GetCommandLineW
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
LCMapStringW
GetStringTypeW
GetConsoleMode
SetFilePointerEx
LoadLibraryW
SetStdHandle
GetLocaleInfoA
CreateThread
GetSystemTime
FindNextFileW
GetModuleHandleA
FindNextFileA
CreateFileMappingA
GetLocalTime
CreateNamedPipeA
IsDBCSLeadByteEx
RaiseException
GetACP
CreateFileW
GetModuleFileNameW
LeaveCriticalSection
CreateEventA
Sleep
IsValidLocale
SetCommTimeouts
SetCommState
GetWindowsDirectoryA
GetCurrentThread
ConnectNamedPipe
WaitForSingleObject
SetHandleInformation
GetModuleHandleExW
WaitNamedPipeA
SetDllDirectoryW
LoadLibraryExW
GlobalMemoryStatus
ExitProcess
DeleteFileA
LocalFree
GetThreadTimes
GetCurrentProcessId
CloseHandle
TlsAlloc
CreatePipe
ResetEvent
FlushFileBuffers
MultiByteToWideChar
CreateProcessA
GetSystemTimeAdjustment
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetCommState
SetEndOfFile
VirtualQuery
MapViewOfFile
GetNumaHighestNodeNumber
HeapReAlloc
GetLastError
DecodePointer
EncodePointer
DuplicateHandle
GetCurrentProcess
GetCurrentThreadId
GetExitCodeThread
GetSystemTimeAsFileTime
EnterCriticalSection
DeleteCriticalSection
WriteConsoleW

user32

IsRectEmpty
ToAsciiEx
ShowOwnedPopups
EndPaint
DestroyWindow
SetCursor
GetMessageW
SendDlgItemMessageA
KillTimer
DeleteMenu
LoadIconA
SetParent
GetClientRect
CreateMenu
BeginPaint
SetScrollRange
GetDoubleClickTime
GetKeyboardState
InflateRect
CreateDialogIndirectParamA
CheckMenuRadioItem
GetScrollInfo
MessageBoxA
UnregisterClassA
SystemParametersInfoW
SetScrollPos
DrawStateW
GetDlgItem
DefWindowProcA
DestroyCaret
CheckDlgButton
ShowWindow
AppendMenuA
CreateWindowExW
CheckRadioButton
MessageBoxW
ReleaseCapture
ScrollWindowEx
BeginDeferWindowPos
RegisterClassW
SendMessageW
UpdateWindow
EnableWindow
GetDlgItemTextA
GetCaretBlinkTime
SetDlgItemTextA
SetScrollInfo
CopyRect
GetWindowThreadProcessId
SetTimer
GetWindowRect
CreateDialogParamA
PostQuitMessage
IsIconic
DrawIconEx
MessageBeep
GetWindowTextLengthA
CreateIconIndirect
WaitMessage
GetDC
GetQueueStatus
OffsetRect
SetPropA
GetKeyboardLayout
InvalidateRect
GetWindowLongA
SetClassLongA
DestroyCursor
GetDesktopWindow
SetMenu
IsDlgButtonChecked
EnableScrollBar
IsWindow
RemoveMenu
GetSystemMetrics
SetWindowTextA
DestroyMenu
DialogBoxParamA
ToUnicode
RegisterClassA

gdi32

ExtCreatePen
SetWindowOrgEx
PolyPolygon
GetMetaFileBitsEx
DeleteDC
Polygon
CreateFontIndirectA
GetDIBits
ExcludeClipRect
CreateHalftonePalette
GetEnhMetaFileHeader
GetRegionData
GetPaletteEntries
PtInRegion
CombineRgn
RectInRegion
SetMapMode
CreateBrushIndirect
RealizePalette
StretchDIBits
GetTextExtentPointW
SelectPalette
GetTextExtentExPointA
CreateRectRgn
CreatePatternBrush
SetViewportExtEx
RoundRect
IntersectClipRect
EndDoc
GetStockObject
CloseEnhMetaFile
CreateEnhMetaFileW
TextOutA
EndPage
SetLayout
GetWindowOrgEx
SetTextColor
GetDeviceCaps
CopyEnhMetaFileA
GetRgnBox
SetPixel
CreatePalette
DeleteObject
SelectClipRgn
CreateCompatibleBitmap
SaveDC
CreateBitmapIndirect
GetCurrentPositionEx
SetPaletteEntries
GetCharABCWidthsW
GetTextExtentPointA
Polyline
RectVisible
SetTextAlign
GetPixel
StretchBlt

advapi32

SetSecurityDescriptorOwner
RegDeleteValueA
LookupPrivilegeValueW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CopySid
AdjustTokenPrivileges
GetUserNameA
RegOpenKeyExA
RegDeleteKeyA

shell32

ShellExecuteExW

ole32

CoTaskMemFree

Sections

.text
Size: 653KB - Virtual size: 653KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kVzE
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02da52fcd1b76e497385827ee097b70d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 653KB - Virtual size: 653KB

.data Size: 6.0MB - Virtual size: 6.0MB

.idata Size: 7KB - Virtual size: 7KB

.kVzE Size: 3KB - Virtual size: 2KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 653KB - Virtual size: 653KB

.data
Size: 6.0MB - Virtual size: 6.0MB

.idata
Size: 7KB - Virtual size: 7KB

.kVzE
Size: 3KB - Virtual size: 2KB

.reloc
Size: 14KB - Virtual size: 13KB