Static task
static1
Behavioral task
behavioral1
Sample
2024-11-14_bc9d09d4d72e0773a49d2d853f366047_virlock.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-11-14_bc9d09d4d72e0773a49d2d853f366047_virlock.exe
Resource
win10v2004-20241007-en
General
-
Target
2024-11-14_bc9d09d4d72e0773a49d2d853f366047_virlock
-
Size
662KB
-
MD5
bc9d09d4d72e0773a49d2d853f366047
-
SHA1
cc141b172d18ac7f671bb6046924a38673aa499e
-
SHA256
0280fd3dee9b09cba29de1539dc6d16be55c15b49e7c3f672508f4b4ed8ff6e5
-
SHA512
ea22c987ee458b418848766780648b5f7f1444f56a44e1d0dd1a776c2de3b9f22b239b84b91341805c54efff33b349328706d316c6f669e9516046ed8fc0f8f6
-
SSDEEP
12288:TlUQ9xuv6Z64BvAT4iNvxvahUY3uyOzWd7qVSS/gNLEK4g74DFBE3yEe:59xuvy64BITPbaZuyZdGgNwU7uW3/e
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2024-11-14_bc9d09d4d72e0773a49d2d853f366047_virlock
Files
-
2024-11-14_bc9d09d4d72e0773a49d2d853f366047_virlock.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 657KB - Virtual size: 656KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE