Static task
static1
Behavioral task
behavioral1
Sample
2024-03-07_b72c4d70043f63044c69e3715f1cebaa_virlock.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-03-07_b72c4d70043f63044c69e3715f1cebaa_virlock.exe
Resource
win10v2004-20240226-en
General
-
Target
2024-03-07_b72c4d70043f63044c69e3715f1cebaa_virlock
-
Size
255KB
-
MD5
b72c4d70043f63044c69e3715f1cebaa
-
SHA1
de541894d1277876b9e0370de5d7ba31fd798c89
-
SHA256
5264166e9bb910415d9f7c7817c144fb2e6a311b946be4932991046d8882c3cf
-
SHA512
d7e27118e4aa3c1340da8991c2b33cd36f41b463435ff26a2b09079a2e90ff036094545223bc3c175bd4a6b292069521bdb17593277463e785b2394c7a188447
-
SSDEEP
6144:JsAePx83aPd/bHJsV2jeCG9Gbzb+U9chg3YKDATZGEEnHpTm:JsZPx8KP9HJsV2j9G9GbzbhChgIK8TMe
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-03-07_b72c4d70043f63044c69e3715f1cebaa_virlock
Files
-
2024-03-07_b72c4d70043f63044c69e3715f1cebaa_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 250KB - Virtual size: 249KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE