Static task
static1
Behavioral task
behavioral1
Sample
2024-01-26_16cc379b5dddb64de93c904ab5cb4c02_virlock.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-26_16cc379b5dddb64de93c904ab5cb4c02_virlock.exe
Resource
win10v2004-20231215-en
General
-
Target
2024-01-26_16cc379b5dddb64de93c904ab5cb4c02_virlock
-
Size
208KB
-
MD5
16cc379b5dddb64de93c904ab5cb4c02
-
SHA1
8ca12347ab5c00be0560f7294864cc188202b095
-
SHA256
244bd6c0b9d3d4431a4585f43fbf19f69a7d68d4c3c5231c294c87e29a4999a0
-
SHA512
86fc9260a9e8e167e42c40cd59ba85d1b53e8c35c516b41632ea28a06ed145351d5b6d6283db2861191b6d44e8e1a17224cb019edcb06be4a5c68ff36b726e8b
-
SSDEEP
6144:b5VEmAhvoV/194tWCrbKlh8xnVTdzg8BPGzsU5:b5VEjoUhrbKlh8xnVTdzlPGzsm
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-01-26_16cc379b5dddb64de93c904ab5cb4c02_virlock
Files
-
2024-01-26_16cc379b5dddb64de93c904ab5cb4c02_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 207KB - Virtual size: 207KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE