Overview

overview

3

Static

static

3

2024-03-06...ck.exe

windows7-x64

3

2024-03-06...ck.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    162s
  • max time network
    168s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06/03/2024, 19:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-03-06_7b09d1f7bd89e200b6bfa23129b7e3a0_virlock.exe

  • Size

    109KB

  • MD5

    7b09d1f7bd89e200b6bfa23129b7e3a0

  • SHA1

    cc5d763f72ea1d92dd7d96bfba39676e641cfe43

  • SHA256

    cc879c0a5b8b633fb46be18fa05749ee316bafc756b657d336c91ac9a87fbe33

  • SHA512

    17e21a82008501ef1cae8a3d39d6c89f83aad50209f6f7ec3e0298303677fc406be0a12136277ff989efec70c5569bf864eb463e70031ece57c0454bb115e759

  • SSDEEP

    1536:6szsSVxFvYCTYj6sL5p6HDEzDtFz1O/viyWPMY/lqjFvxcDvFRt/nRPAcDznQCSV:XDVbYCTLsL6jEzDvU6YBvxyF/RcCpm

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-03-06_7b09d1f7bd89e200b6bfa23129b7e3a0_virlock.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-03-06_7b09d1f7bd89e200b6bfa23129b7e3a0_virlock.exe"
    1⤵
      PID:4372
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 4372 -s 224
        2⤵
        • Program crash
        PID:2660
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4372 -ip 4372
      1⤵
        PID:1612

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/4372-0-0x0000000000400000-0x000000000041D000-memory.dmp

              Filesize

              116KB

              Download

            • memory/4372-1-0x0000000000400000-0x000000000041D000-memory.dmp

              Filesize

              116KB

              Download