2024-10-05_326c882259ef6b5e250ae1512d3b0a41_bkransomware_metamorfo

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-05_326c882259ef6b5e250ae1512d3b0a41_bkransomware_metamorfo
Size

2.0MB
MD5

326c882259ef6b5e250ae1512d3b0a41
SHA1

b29d1539595f1816a8842b539551732e0d7efecd
SHA256

e3b21db63cb90f5bb39f965eb67d3d8284a898cbd8fdad51a0e1aed1aa1a2c40
SHA512

c60f37f2646ec105ed4692690f9860fdaac81994ddf79986ed238f18df7df5a32b24eb9c9e893e2888ac673eae77f429ad688a9987f2f4b64aaff6201d70b511
SSDEEP

49152:xm/qXWQvb1rGzdHDUfdSCrVe5gudQWwbU3bxbGNWFvvS9mD8kLEY7SC:xMQvb1rGz1A8CrvudQWKUlbGNWFvvS9I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-05_326c882259ef6b5e250ae1512d3b0a41_bkransomware_metamorfo

Files

2024-10-05_326c882259ef6b5e250ae1512d3b0a41_bkransomware_metamorfo
.exe windows:5 windows x86 arch:x86

3e5a6d29f9185410e2916546d3134324

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
SetFilePointerEx
GetConsoleCP
GetConsoleMode
GetStringTypeW
ReadConsoleW
WriteConsoleW
GetOEMCP
TerminateProcess
CreateDirectoryW
DosDateTimeToFileTime
UnmapViewOfFile
CreateFileMappingW
MapViewOfFile
GetFileInformationByHandle
GetSystemTime
GetLocalTime
FileTimeToDosDateTime
GetACP
IsValidCodePage
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetStdHandle
GetFileType
SizeofResource
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
ExitThread
RtlUnwind
GetCPInfo
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemTimeAsFileTime
GetModuleHandleExW
ExitProcess
GetCommandLineW
FindResourceExW
GetUserDefaultLCID
VirtualProtect
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
SetFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
SetErrorMode
lstrcpyW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
GetCurrentDirectoryW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetThreadLocale
SystemTimeToFileTime
FileTimeToSystemTime
GlobalGetAtomNameW
GlobalFlags
ResumeThread
SetThreadPriority
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GetCurrentThread
GetCurrentProcessId
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
EncodePointer
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalSize
GlobalAlloc
LoadLibraryW
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleW
GetModuleHandleA
FreeResource
SetLastError
OutputDebugStringA
CreateFileW
ReadFile
GetFileSize
WideCharToMultiByte
OutputDebugStringW
DeleteFileW
FindNextFileW
lstrcatW
FindClose
GetVersionExW
Sleep
GetSystemDirectoryW
GetTickCount
FindFirstFileW
InterlockedDecrement
DeleteCriticalSection
DecodePointer
HeapSize
RaiseException
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
GetWindowsDirectoryW
CreateThread
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
CloseHandle
WaitForSingleObject
CreateEventW
GetShortPathNameW
GetModuleFileNameW
CreateMutexW
GetLastError
MultiByteToWideChar
GetCurrentThreadId
FindResourceW
LoadResource
LockResource
SetEnvironmentVariableA

user32

DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
SetParent
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
PostThreadMessageW
GetSystemMenu
IsZoomed
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
RegisterClipboardFormatW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
GetIconInfo
DrawIconEx
SetRectEmpty
DrawFocusRect
GetMenuDefaultItem
CreatePopupMenu
CharUpperW
DestroyIcon
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
SetRect
InvalidateRgn
CopyAcceleratorTableW
OffsetRect
CharNextW
DeleteMenu
WaitMessage
MapVirtualKeyW
GetKeyNameTextW
CopyImage
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
LoadCursorW
GetSysColorBrush
RealChildWindowFromPoint
SetCursor
ShowOwnedPopups
TranslateMessage
GetMessageW
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
IntersectRect
InflateRect
GetWindowThreadProcessId
FillRect
SetCursorPos
EndPaint
BeginPaint
GetWindowDC
WindowFromPoint
GetCursorPos
SendDlgItemMessageA
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
EqualRect
MapWindowPoints
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
EnableWindow
GetDlgCtrlID
SendMessageW
GetClientRect
GetDC
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
LockWindowUpdate
SetClassLongW
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuW
CharUpperBuffW
FrameRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
GetWindowRgn
DestroyCursor
SetWindowPlacement
GetWindowPlacement
SetWindowPos
CreateMenu
TranslateMDISysAccel
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
ClientToScreen
GetParent
wsprintfW
ReleaseDC
RedrawWindow
GetSysColor
SetWindowRgn
CopyRect
LoadBitmapW
InvalidateRect
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
PostMessageW
SetCapture
PtInRect
SetTimer
KillTimer
ReleaseCapture
LoadIconW
GetSystemMetrics
IsIconic
DrawIcon
LoadImageW
GetWindowRect
UnregisterClassW
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
GetWindowLongW
GetDesktopWindow
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
LoadMenuW
RegisterWindowMessageW
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsChild

gdi32

SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetTextMetricsW
GetBkColor
GetTextColor
GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
MoveToEx
EnumFontFamiliesExW
OffsetRgn
CreateRoundRectRgn
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
SetMapMode
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
Polyline
GetTextExtentPoint32W
SetBkMode
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
DeleteDC
CreatePatternBrush
CreateHatchBrush
CreateBitmap
SetTextColor
SetBkColor
GetDeviceCaps
CreateDCW
CopyMetaFileW
RoundRect
Escape
ExtTextOutW
RectVisible
PtVisible
TextOutW
CreateRectRgn
StretchBlt
GetObjectW
CreateRectRgnIndirect
Rectangle
CreateBrushIndirect
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
DeleteObject
SelectObject
CreatePen
CreateSolidBrush
SetLayout

msimg32

AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegDeleteValueW
RegCloseKey
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW

shell32

SHGetDesktopFolder
ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHCreateDirectoryExW
SHBrowseForFolderW
SHFileOperationW
SHAppBarMessage
DragFinish
DragQueryFileW
SHGetSpecialFolderPathW
SHGetFileInfoW
ShellExecuteExW

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW

uxtheme

GetWindowTheme
GetThemeSysColor
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemePartSize
IsAppThemed
IsThemeBackgroundPartiallyTransparent

ole32

CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoGetClassObject
CoTaskMemFree
CoTaskMemAlloc
OleRun
CoCreateInstance
CoUninitialize
CoInitialize
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoInitializeEx
CreateStreamOnHGlobal
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
DoDragDrop
OleLockRunning
OleCreateMenuDescriptor
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor

oleaut32

VariantClear
SysAllocStringLen
VariantInit
VariantChangeType
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysFreeString
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
GetErrorInfo
LoadTypeLi

oledlg

OleUIBusyW

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

wininet

HttpSendRequestW
InternetConnectW
InternetReadFile
InternetQueryOptionW
InternetOpenW
InternetSetOptionW
HttpOpenRequestW
InternetCloseHandle

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e5a6d29f9185410e2916546d3134324

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

winmm

wininet

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 362KB - Virtual size: 361KB

.data Size: 28KB - Virtual size: 122KB

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 127KB - Virtual size: 126KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 362KB - Virtual size: 361KB

.data
Size: 28KB - Virtual size: 122KB

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 127KB - Virtual size: 126KB