Static task
static1
Behavioral task
behavioral1
Sample
2024-04-26_d03d452fd582dbca3d4c4913cc8b94f1_virlock.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-26_d03d452fd582dbca3d4c4913cc8b94f1_virlock.exe
Resource
win10v2004-20240412-en
General
-
Target
2024-04-26_d03d452fd582dbca3d4c4913cc8b94f1_virlock
-
Size
564KB
-
MD5
d03d452fd582dbca3d4c4913cc8b94f1
-
SHA1
ced9a3791ed9224e9a3377e222f6cfe9c9b79542
-
SHA256
4e7291e0ab5314d7ba015fcc974089eded6edc4f0fa5df08ebae5e4bc37338f9
-
SHA512
e7762bd8b924ae6ee2f4fb06db46f3d51a81d3dec69270a5e91844a740a7cc0d3119d18f581946831482265425b32f3d04e69160e28a4e9c7da76b6bd1df9299
-
SSDEEP
12288:9ffms3xxd2L7UEUMxH8wGxXxedFiOfKUxwAiquA1:Fms3xxQ8waxXQFiT/A
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-04-26_d03d452fd582dbca3d4c4913cc8b94f1_virlock
Files
-
2024-04-26_d03d452fd582dbca3d4c4913cc8b94f1_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 563KB - Virtual size: 562KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE