General

  • Target

    2024-04-03_c1aeba6369a3615061f44778021f6b42_virlock

  • Size

    163KB

  • MD5

    c1aeba6369a3615061f44778021f6b42

  • SHA1

    d5e40b2f91be6e95891a6f3e111f6a00f448de27

  • SHA256

    357908d9f3abf01fcc8d4d3527483d5b9993cd1f70d7af2897ed313f05a39d97

  • SHA512

    9e4bb49a5230ad624b9224b1f17e4da18345a9c7fece9299035986fc453b7f61c83d2a72486a8f7b674a14575107cf6d661f28709f9aef0450199c2cc3b8edd3

  • SSDEEP

    3072:YHgTPOOwUJRymLMT+2eVyY1+ly6MkCSU2jgPqS01LpTLAwqsonnqBKLtYMlDJ+:YHgCfn7js6Zjg+Qfe0

Score
10/10
upx

Malware Config

Signatures

  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-03_c1aeba6369a3615061f44778021f6b42_virlock
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections