2024-09-25_8d602c94c3d44775e3d9d5f98ff714e5_bkransomware_floxif

Sharing

Copy URL

Twitter E-mail

General

Target

2024-09-25_8d602c94c3d44775e3d9d5f98ff714e5_bkransomware_floxif
Size

9.8MB
MD5

8d602c94c3d44775e3d9d5f98ff714e5
SHA1

e2b3067cb3e774d74f84953fe705845784f1ba7e
SHA256

ed560a52682fb84a70e6e133588dac95e5f43ff8cd29555a06dd7090618b0f51
SHA512

a4fbcfcb0f3e2991714ed4bdea55d81d519fec1946b989a510cd89bfc0f25b97e59de8cdff8bfd45a4811f5289a6f57175ef73cbe10e39c5ba6e4ea3a44dc2c7
SSDEEP

98304:1Sy3mKysr9uBxAWZTvNqL+R6JiFLOAkGkzdnEVomFHKnPZi:1jB2nqL+RjFLOyomFHKnPZi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-25_8d602c94c3d44775e3d9d5f98ff714e5_bkransomware_floxif

Files

2024-09-25_8d602c94c3d44775e3d9d5f98ff714e5_bkransomware_floxif
.exe windows:5 windows x86 arch:x86

d4bbf18023378260e667adddb28c0ef6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\WindowsDrive\XINYE POS Printer Driver\SetupDriver\Release\XPrinter Driver V7.77.pdb

Imports

kernel32

GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetEnvironmentStringsW
LCMapStringW
OutputDebugStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
QueryPerformanceCounter
GetStdHandle
GetStartupInfoW
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsValidCodePage
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
HeapQueryInformation
GetModuleHandleExW
ExitProcess
ExitThread
WideCharToMultiByte
CreateThread
VirtualQuery
VirtualAlloc
RtlUnwind
GetCommandLineA
IsProcessorFeaturePresent
GetStringTypeW
FindResourceExW
SearchPathA
GetProfileIntA
VirtualProtect
GetTempFileNameA
GetTempPathA
GetTickCount
GetFileTime
GetFileSizeEx
GetFileAttributesExA
FileTimeToLocalFileTime
SetErrorMode
GetWindowsDirectoryA
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
FlushFileBuffers
FindFirstFileA
FindClose
GetFileSize
IsDebuggerPresent
FreeEnvironmentStringsW
GetFileAttributesA
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
GetCPInfo
GetOEMCP
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetThreadLocale
FileTimeToSystemTime
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalFlags
GetACP
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
GetCurrentThread
ResumeThread
SuspendThread
SetThreadPriority
CreateEventA
WaitForSingleObject
SetEvent
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
GetCurrentProcessId
MultiByteToWideChar
MulDiv
GlobalSize
GlobalAlloc
FindResourceA
LoadLibraryW
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
SetLastError
DeleteCriticalSection
DecodePointer
EnterCriticalSection
HeapSize
RaiseException
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
GetLocalTime
LocalFree
GetLastError
FormatMessageA
CopyFileA
DeleteFileA
GetVersionExA
GetNativeSystemInfo
GetSystemInfo
CloseHandle
WriteFile
CreateFileA
GetModuleFileNameA
OutputDebugStringA
GetCurrentDirectoryA
Sleep
GetUserDefaultUILanguage
FindResourceW
LoadResource
LockResource
SizeofResource

user32

InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
InvertRect
HideCaret
UpdateLayeredWindow
GetUpdateRect
SetClassLongA
DestroyAcceleratorTable
ModifyMenuA
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
CopyIcon
GetIconInfo
GetDoubleClickTime
EnableScrollBar
LockWindowUpdate
CreatePopupMenu
BringWindowToTop
UnionRect
SetCursorPos
NotifyWinEvent
LoadMenuW
GetAsyncKeyState
CharUpperA
IsZoomed
TrackMouseEvent
LoadImageW
LoadImageA
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
MonitorFromPoint
SetParent
EnumDisplayMonitors
SetRectEmpty
SetLayeredWindowAttributes
MessageBeep
GetNextDlgGroupItem
SetRect
InvalidateRgn
CopyAcceleratorTableA
CharNextA
DeleteMenu
LoadCursorW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
CopyImage
IntersectRect
RealChildWindowFromPoint
MapVirtualKeyA
GetKeyNameTextA
GetMenuItemInfoA
DestroyMenu
InvalidateRect
ShowOwnedPopups
DrawIconEx
IsRectEmpty
OffsetRect
InflateRect
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawStateA
DrawFrameControl
DrawEdge
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
IsDialogMessageA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetWindowRgn
DestroyCursor
CreateMenu
PostMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxA
FillRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
MapVirtualKeyExA
IsCharLowerA
PostThreadMessageA
IsClipboardFormatAvailable
FrameRect
CharUpperBuffA
SubtractRect
GetWindowDC
GetDC
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
GetKeyboardLayout
RegisterClipboardFormatA
ReuseDDElParam
UnpackDDElParam
CheckMenuItem
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
RemoveMenu
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
GetParent
GetDesktopWindow
GetWindowLongA
SetActiveWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
IsWindow
DrawIcon
GetClientRect
GetSystemMetrics
AppendMenuA
GetSystemMenu
LoadIconW
UnregisterClassA
LoadCursorA
SetCursor
FindWindowExA
FindWindowA
IsIconic
SetWindowTextA
KillTimer
SetTimer
SendMessageA
CopyRect
LoadBitmapW
EnableWindow
SystemParametersInfoA

gdi32

TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateEllipticRgn
CreateRectRgnIndirect
Ellipse
GetBkColor
GetTextColor
GetTextExtentPoint32A
PatBlt
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsA
CreateFontIndirectA
GetMapMode
SetRectRgn
DPtoLP
GetRgnBox
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
MoveToEx
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExA
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
SetPixelV
GetTextFaceA
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SetPolyFillMode
SetTextAlign
SetTextColor
OffsetRgn
CreateFontA
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
GetDeviceCaps
CopyMetaFileA
CreateSolidBrush
DeleteDC
EndDoc
EndPage
BitBlt
StartPage
StartDocA
CreateDCA
CreateCompatibleDC
GetObjectA
SetROP2

msimg32

AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesA
ord202
GetPrinterDriverDirectoryA
OpenPrinterA
ClosePrinter
AddPrinterA
EnumPrintersA
AddPrinterDriverA

advapi32

RegDeleteValueA
RegEnumKeyExA
RegQueryValueA
RegSetValueExA
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegEnumKeyA
RegCloseKey
RegEnumValueA

shell32

ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
DragFinish
DragQueryFileA
SHGetSpecialFolderLocation
SHAppBarMessage
SHGetFileInfoA
SHGetDesktopFolder
SHBrowseForFolderA

comctl32

InitCommonControlsEx

shlwapi

PathFileExistsA
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
StrFormatKBSizeA
PathRemoveFileSpecW
PathIsUNCA

uxtheme

GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
DrawThemeParentBackground
DrawThemeText
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
OpenThemeData
CloseThemeData

ole32

CoDisconnectObject
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
OleDuplicateData
CoGetClassObject
CoTaskMemFree
CoTaskMemAlloc
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoRevokeClassObject
CoInitializeEx
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
ReleaseStgMedium
OleFlushClipboard

oleaut32

SysFreeString
SysAllocString
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen

oledlg

ord8

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

setupapi

SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 319KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7.9MB - Virtual size: 7.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4bbf18023378260e667adddb28c0ef6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

version

setupapi

oleacc

imm32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 319KB - Virtual size: 318KB

.data Size: 25KB - Virtual size: 60KB

.rsrc Size: 7.9MB - Virtual size: 7.9MB

.reloc Size: 121KB - Virtual size: 120KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 319KB - Virtual size: 318KB

.data
Size: 25KB - Virtual size: 60KB

.rsrc
Size: 7.9MB - Virtual size: 7.9MB

.reloc
Size: 121KB - Virtual size: 120KB