2024-09-21_c252264fdd33662ff99e5e5390e1f69e_bkransomware

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-21_c252264fdd33662ff99e5e5390e1f69e_bkransomware
Size

4.9MB
MD5

c252264fdd33662ff99e5e5390e1f69e
SHA1

d3e9201ed3a515ed84e0e6655ec7427c048fd4b1
SHA256

bb0b601c3ff1d4b05f125743b9c4b4d5eede6fa23266a37648aa5029fc5ae8d6
SHA512

58c51fa183009d9922ae62d4fe00789d0fd9f872a4654eba1abf7e4549641f737b56124d35a1873e7769d73e6d47a1927d7e4fec72a65064fb1aa04423821913
SSDEEP

98304:gJ1iDNhs49C8k2VKrtFVhD8UOZ34dCYvsFLOAkGkzdnEVomFHKnPQt2sEE5:EZ4AB+Kro4dCYvsFLOyomFHKnPQt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-21_c252264fdd33662ff99e5e5390e1f69e_bkransomware

Files

2024-09-21_c252264fdd33662ff99e5e5390e1f69e_bkransomware
.exe windows:5 windows x86 arch:x86

1f8024822b51fc5ee1dbcc52942bc86b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\GOMSyncLyricEditor\GomSyncLyricEditor\Release\GomSyncLyricEditor.pdb

Imports

winmm

timeSetEvent
PlaySoundW

kernel32

TerminateProcess
IsValidCodePage
GetOEMCP
GetCPInfo
GetStringTypeW
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleCP
GetTimeZoneInformation
OutputDebugStringW
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
HeapReAlloc
GetNativeSystemInfo
FindResourceW
LoadResource
HeapAlloc
VerSetConditionMask
HeapFree
GetProcessHeap
GetPrivateProfileStringW
WideCharToMultiByte
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
SizeofResource
GetVersionExW
HeapDestroy
LeaveCriticalSection
GetModuleFileNameW
SetUnhandledExceptionFilter
RaiseException
GetPrivateProfileIntW
VerifyVersionInfoW
GetLastError
HeapSize
EnterCriticalSection
LockResource
DecodePointer
DeleteCriticalSection
CreateThread
GetCommandLineW
GetFileSize
SetDllDirectoryW
CreateDirectoryW
CreateFileW
CloseHandle
FreeResource
FreeLibrary
LoadLibraryW
GetFileAttributesW
GetProcAddress
Sleep
GlobalLock
GetStartupInfoW
GetStdHandle
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
AreFileApisANSI
GetModuleHandleExW
ExitProcess
ExitThread
RtlUnwind
GetFileType
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
FreeEnvironmentStringsW
MultiByteToWideChar
GetEnvironmentStringsW
GlobalAlloc
GlobalUnlock
WritePrivateProfileStringW
VirtualProtect
GetWindowsDirectoryW
GetProfileIntW
SearchPathW
GetTempPathW
GetTempFileNameW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
GlobalFlags
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalGetAtomNameW
FileTimeToSystemTime
LocalAlloc
FileTimeToLocalFileTime
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
lstrcpyW
lstrcmpA
GetCurrentThread
ResumeThread
SetThreadPriority
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
GetModuleHandleW
GetModuleHandleA
OutputDebugStringA
GetCurrentThreadId
GetCurrentProcessId
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalSize
SetLastError
LoadLibraryExA
WaitForSingleObject
CreateMutexW
GetACP
DeleteFileW
lstrlenW
SetFilePointer
GetTickCount
ReadFile
FindResourceExW

user32

CopyAcceleratorTableW
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
GetUpdateRect
UnregisterClassW
SetClassLongW
DestroyAcceleratorTable
CopyIcon
GetIconInfo
GetDoubleClickTime
LockWindowUpdate
BringWindowToTop
SetCursorPos
LoadImageW
EmptyClipboard
SetClipboardData
SetParent
DestroyIcon
WaitMessage
CopyImage
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
MessageBeep
DeleteMenu
GetAsyncKeyState
IsZoomed
EnumDisplayMonitors
SetRectEmpty
RealChildWindowFromPoint
CharUpperW
WindowFromPoint
DestroyMenu
DrawIconEx
OffsetRect
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawFrameControl
DrawEdge
ShowOwnedPopups
PostQuitMessage
MapVirtualKeyW
GetKeyNameTextW
SendDlgItemMessageA
TranslateMessage
GetMessageW
IsDialogMessageW
CheckDlgButton
MoveWindow
ShowWindow
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetWindow
GetTopWindow
GetClassLongW
SetWindowLongW
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
GetScrollRange
SetScrollRange
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
CreateWindowExW
GetClassInfoExW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
InflateRect
LoadMenuW
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetCursorPos
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetLastActivePopup
GetWindowThreadProcessId
GetWindowLongW
MessageBoxW
IsWindowEnabled
GetClassNameW
FillRect
UpdateWindow
DrawStateW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
RemoveMenu
InsertMenuW
EnableWindow
GetMenuState
PostMessageW
IsWindow
wsprintfW
ClientToScreen
ScreenToClient
TranslateAcceleratorW
KillTimer
TrackMouseEvent
FindWindowW
LoadAcceleratorsW
CloseClipboard
IsClipboardFormatAvailable
GetClipboardData
SetScrollPos
ShowScrollBar
GetWindowRgn
DestroyCursor
CreateMenu
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
MapDialogRect
OpenClipboard
IsWindowVisible
SubtractRect
InvertRect
HideCaret
GetNextDlgGroupItem
PostThreadMessageW
FrameRect
ReuseDDElParam
SetPropW
UnpackDDElParam
ReleaseCapture
InvalidateRect
PtInRect
GetClientRect
LoadCursorW
SetCapture
GetWindowRect
SetTimer
SetCursor
SendMessageW
LoadBitmapW
RedrawWindow
CopyRect
GetSysColor
ReleaseDC
GetDC
SetRect
GetFocus
GetKeyState
GetClassInfoW
IsRectEmpty
GetMonitorInfoW
GetSystemMetrics
SystemParametersInfoW
AppendMenuW
IntersectRect
LoadIconW
DrawIcon
IsIconic
GetSystemMenu
SetWindowTextW
GetDlgCtrlID
GetMenuItemCount
ModifyMenuW
GetMenuItemInfoW
GetMenuStringW
InsertMenuItemW
CharUpperBuffW
IsChild
RegisterClipboardFormatW
GetParent
GetSubMenu
GetMenuItemID
GetScrollPos
SetLayeredWindowAttributes

gdi32

Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateRectRgn
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
CreateEllipticRgn
Ellipse
GetBkColor
GetTextColor
GetTextExtentPoint32W
CreatePolygonRgn
Polygon
Polyline
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateDIBSection
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
Rectangle
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
FillRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
SetPixelV
GetTextFaceW
CreatePen
CreatePatternBrush
CreateHatchBrush
DeleteObject
CreateBitmap
GetDeviceCaps
CreateDCW
CopyMetaFileW
GetStockObject
FrameRgn
CreateRoundRectRgn
GetTextMetricsW
GetObjectW
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
CreateFontIndirectW
SelectObject
DeleteDC

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetOpenFileNameW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegDeleteKeyW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyW
RegCloseKey
RegOpenKeyExW

shell32

DragQueryFileW
ShellExecuteW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
SHGetFileInfoW
DragFinish
SHGetFolderPathW
SHAppBarMessage

comctl32

_TrackMouseEvent

shlwapi

PathRemoveExtensionW
PathFindExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
UrlUnescapeW
PathFindFileNameW
StrFormatKBSizeW

uxtheme

IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
DrawThemeText
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetThemeSysColor
GetWindowTheme

ole32

IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CoDisconnectObject
CoInitializeEx
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoCreateInstance
CreateStreamOnHGlobal

oleaut32

LoadTypeLi
SystemTimeToVariantTime
VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
VariantInit
VariantClear
VariantChangeType
SysAllocString
SysStringLen

gdiplus

GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipCombineRegionRegion
GdipCreateRegion
GdipResetClip
GdipMeasureCharacterRanges
GdipDeleteRegion
GdipSetStringFormatMeasurableCharacterRanges
GdipCreateRegionRect
GdipCreateRegionRectI
GdipSetClipRegion
GdipSetStringFormatTrimming
GdiplusShutdown
GdipDeleteBrush
GdipFree
GdipDeletePen
GdipCloneBrush
GdipMeasureString
GdipSetStringFormatLineAlign
GdipDeleteFont
GdipDeleteGraphics
GdipDrawImageRectI
GdipSetStringFormatAlign
GdipDeleteFontFamily
GdipCreateSolidFill
GdipSetPenColor
GdipAlloc
GdipCreateFont
GdipDrawString
GdipCreateFontFamilyFromName
GdipCreateFromHDC
GdipSetSolidFillColor
GdipFillRectangleI
GdipDrawLineI
GdipCreateStringFormat
GdipCreatePen1
GdipDeleteStringFormat
GdipDrawRectangleI
GdipDrawImageRect
GdiplusStartup
GdipSetPenWidth
GdipLoadImageFromStream
GdipDisposeImage
GdipCloneImage
GdipSetTextRenderingHint

rpcrt4

RpcStringFreeW
UuidCreate
UuidToStringW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

wininet

InternetSetStatusCallbackW
HttpOpenRequestW
HttpSendRequestW
HttpQueryInfoW
InternetGetLastResponseInfoW
InternetQueryDataAvailable
InternetWriteFile
InternetCrackUrlW
InternetCanonicalizeUrlW
InternetOpenW
InternetCloseHandle
InternetConnectW
InternetReadFile
InternetSetFilePointer

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 435KB - Virtual size: 434KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 752KB - Virtual size: 756KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1f8024822b51fc5ee1dbcc52942bc86b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

winmm

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

rpcrt4

oleacc

wininet

imm32

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 435KB - Virtual size: 434KB

.data Size: 28KB - Virtual size: 86KB

.rsrc Size: 1.8MB - Virtual size: 1.8MB

.reloc Size: 752KB - Virtual size: 756KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 435KB - Virtual size: 434KB

.data
Size: 28KB - Virtual size: 86KB

.rsrc
Size: 1.8MB - Virtual size: 1.8MB

.reloc
Size: 752KB - Virtual size: 756KB