Static task
static1
Behavioral task
behavioral1
Sample
2024-10-20_81ab65298a81d207d0561795301cbc83_virlock.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-10-20_81ab65298a81d207d0561795301cbc83_virlock.exe
Resource
win10v2004-20241007-en
General
-
Target
2024-10-20_81ab65298a81d207d0561795301cbc83_virlock
-
Size
225KB
-
MD5
81ab65298a81d207d0561795301cbc83
-
SHA1
92c2684af4919c83ad829c4597b8b7e6117a84bf
-
SHA256
9e5b495ca615441e41664c15de272de18ba033eb1285f9b374fa28e90e1df353
-
SHA512
a942fa9f6077459c9c09e1c9cf09945e0c2ae553069e52d88eea2ab0e7cc9dd933164900a2d0575b17b0460893b3d41f441ca7d45288343fd3c621df91099db3
-
SSDEEP
3072:Z+HY0gDpQFkUXBiSLAuHWIEHOOt3riP890j/mW8JrbEGTSxqEBxyP:4Hj0pQjpWDJ/EGTSIEBxyP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-10-20_81ab65298a81d207d0561795301cbc83_virlock
Files
-
2024-10-20_81ab65298a81d207d0561795301cbc83_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 224KB - Virtual size: 224KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE