Static task
static1
Behavioral task
behavioral1
Sample
2024-11-04_150acf0d0a3911b605e06612e98b0ba7_virlock.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
2024-11-04_150acf0d0a3911b605e06612e98b0ba7_virlock.exe
Resource
win10v2004-20241007-en
General
-
Target
2024-11-04_150acf0d0a3911b605e06612e98b0ba7_virlock
-
Size
755KB
-
MD5
150acf0d0a3911b605e06612e98b0ba7
-
SHA1
bfb64667232885973f5372b0ce48f228e9035d0e
-
SHA256
a5d67b8afb9232fb83bc663391f1156bcb674e7af3654e9f394e64517256ee1a
-
SHA512
8f13331e9f8ea24847850c5e157dc46c264fee677d6d56db55143f6a661f10d287336e4b6ad215018ee27bba8e7ef8564d1509bd73ef34eaadda7b9eb88cc14c
-
SSDEEP
12288:r4/f0wJ+CrUMY1PSlraXhjuLwLQTTCS7ZKAvOSUmbKJVR5EioLLIx1DIirxooV8r:rmswJ+CrUMY1PSlr+pLUySkwYVRiJLLf
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-11-04_150acf0d0a3911b605e06612e98b0ba7_virlock
Files
-
2024-11-04_150acf0d0a3911b605e06612e98b0ba7_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 754KB - Virtual size: 753KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE