Static task
static1
Behavioral task
behavioral1
Sample
2024-07-05_faf4a13294c9eb15a32a66ddff1cd0b8_virlock.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-07-05_faf4a13294c9eb15a32a66ddff1cd0b8_virlock.exe
Resource
win10v2004-20240704-en
General
-
Target
2024-07-05_faf4a13294c9eb15a32a66ddff1cd0b8_virlock
-
Size
242KB
-
MD5
faf4a13294c9eb15a32a66ddff1cd0b8
-
SHA1
18dc43f42d13880b13d8459c76a0bedee2b86a54
-
SHA256
958a79dfb26cb0548fa6b48e66b6c826350733a331c77d885ddee2503e2a8ede
-
SHA512
315f709f7c38ca0e723e7fc8ed0e0292f1262e020a682a9b7d01cd7ef3652259d963c94e8293faada8f2e086fe55c79388f41796e1e9d3f3003556401ae45a1c
-
SSDEEP
6144:LjuolgBD6TtaqF73V3b9M5r8YWnWiZ8llW:3uoA6TtaqF7tbm5XWnTZCW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-07-05_faf4a13294c9eb15a32a66ddff1cd0b8_virlock
Files
-
2024-07-05_faf4a13294c9eb15a32a66ddff1cd0b8_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 237KB - Virtual size: 236KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE