Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_2f38b7b8792c76ae25adfc951654b11c_virlock.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-01_2f38b7b8792c76ae25adfc951654b11c_virlock.exe
Resource
win10v2004-20240226-en
General
-
Target
2024-06-01_2f38b7b8792c76ae25adfc951654b11c_virlock
-
Size
650KB
-
MD5
2f38b7b8792c76ae25adfc951654b11c
-
SHA1
ff7a15be619a11822ed1d50d9e40fd1542d5ccc1
-
SHA256
c594e8cba854f2c38308ec56e0cee68c56f797147ce8757fd56ecd7dd5a9dea8
-
SHA512
3aed9b2c9127f55630b90ef14dd8d2a696819e5a1a8835099cfa528a3ba89a95555e2f7b4e7b6989bfadf693db4960c83441e95004bbe3878f0e3f58be0114d6
-
SSDEEP
12288:dkxNQly7BO2jVN/Gz+giK2X0PWk3BywaFO+IPU49adzTh4:dkx40fjVN/G6gFc0ekR3aF7I63h4
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2024-06-01_2f38b7b8792c76ae25adfc951654b11c_virlock
Files
-
2024-06-01_2f38b7b8792c76ae25adfc951654b11c_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 645KB - Virtual size: 645KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE