2024-09-15_e133a1f7d4e611079287e5aeac20f0c9_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-15_e133a1f7d4e611079287e5aeac20f0c9_bkransomware
Size

2.2MB
MD5

e133a1f7d4e611079287e5aeac20f0c9
SHA1

6b5ce611f0d7ac72550056f7b609ce53f1155252
SHA256

c0fb054dbe15a0302820f15c9bb3f8d607ef674ed3e7c314220580fa3cad1168
SHA512

0651433f185e3ed572a868538e6c1a1e27be42ac02d441a3169c5398a2a0d197b3164cd17df16f4a1d3d58ba2946d2620f77b9d3542d4758aed857e88c05fe4d
SSDEEP

24576:6DJtc/T8DOS8+wkn/5hmYGhHRZ7v7NKPcyr0DGcWCp:6L68DVXrmYU7P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-15_e133a1f7d4e611079287e5aeac20f0c9_bkransomware

Files

2024-09-15_e133a1f7d4e611079287e5aeac20f0c9_bkransomware
.exe windows:5 windows x86 arch:x86

58b9b4a6ec2e70356fbd95680f0fd2fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExW

user32

ActivateKeyboardLayout
GetMonitorInfoW
GetClassNameW
GetParent
ClientToScreen
GetCaretBlinkTime
GetClientRect
EnableScrollBar
GetDC
UpdateWindow
GetTabbedTextExtentW
TrackPopupMenu
GetMenuItemID
GetSubMenu
GetSystemMenu
DrawMenuBar
GetMenuState
SetMenu
GetClipboardData
GetDialogBaseUnits
CheckRadioButton
IsZoomed
GetClassInfoExW
GetClassInfoW
UnregisterClassW
BroadcastSystemMessageW
GetKeyboardLayout
GetKeyboardLayoutList

setupapi

SetupOpenFileQueue
CM_Get_Parent
CM_Get_DevNode_Status
CM_Get_DevNode_Registry_Property_ExW
CM_Get_Device_ID_ExW
CM_Get_Device_IDW
SetupDiGetActualSectionToInstallW
SetupDiSetDeviceInstallParamsW
SetupDiGetDeviceRegistryPropertyW
SetupDiCallClassInstaller
SetupDiGetDriverInfoDetailW
SetupDiGetSelectedDriverW
SetupDiGetDeviceInterfaceDetailW
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceInfoListDetailW
SetupDiCreateDeviceInfoList
SetupCloseFileQueue
SetupGetLineCountW

comctl32

InitializeFlatSB
FlatSB_SetScrollProp
FlatSB_SetScrollPos
FlatSB_GetScrollPos
CreateStatusWindowW
CreateToolbarEx
ImageList_GetIconSize
ImageList_Write
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_GetIcon
ImageList_Remove
ImageList_DrawIndirect
ImageList_AddMasked
ImageList_Replace
ImageList_Draw
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
InitCommonControlsEx
DestroyPropertySheetPage

kernel32

IsProcessorFeaturePresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsAlloc
IsDebuggerPresent
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
HeapFree
RtlUnwind
OutputDebugStringW
GetStringTypeW
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
TerminateProcess
VirtualAlloc
HeapAlloc
WaitForSingleObject
SizeofResource
TlsGetValue
LoadLibraryExW
CreateProcessW
GetFileAttributesW
FindFirstFileW
MoveFileW
OpenJobObjectW
GetConsoleWindow
GetCurrentProcessId
QueryPerformanceCounter
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
CreateFileW

ole32

CoGetMalloc

Sections

.text
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 686KB - Virtual size: 7.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.9r03ur
Size: 425KB - Virtual size: 425KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iee271
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3vh2
Size: 400KB - Virtual size: 399KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vl51
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58b9b4a6ec2e70356fbd95680f0fd2fa

Headers

File Characteristics

Imports

advapi32

user32

setupapi

comctl32

kernel32

ole32

Sections

.text Size: 123KB - Virtual size: 122KB

.data Size: 686KB - Virtual size: 7.7MB

.idata Size: 4KB - Virtual size: 4KB

.xdata Size: 1024B - Virtual size: 724B

.9r03ur Size: 425KB - Virtual size: 425KB

.iee271 Size: 192KB - Virtual size: 192KB

.3vh2 Size: 400KB - Virtual size: 399KB

.vl51 Size: 32KB - Virtual size: 31KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 123KB - Virtual size: 122KB

.data
Size: 686KB - Virtual size: 7.7MB

.idata
Size: 4KB - Virtual size: 4KB

.xdata
Size: 1024B - Virtual size: 724B

.9r03ur
Size: 425KB - Virtual size: 425KB

.iee271
Size: 192KB - Virtual size: 192KB

.3vh2
Size: 400KB - Virtual size: 399KB

.vl51
Size: 32KB - Virtual size: 31KB

.rsrc
Size: 362KB - Virtual size: 362KB