Malware Signature
The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with VirLock
Database Entry
| Malware: | VirLock |
|---|---|
| First seen: | 2015-07-02 20:23:21 UTC |
| Last seen: | 2017-06-06 00:58:59 UTC |
Malware Samples
The table below documents all malware samples associated with this malware family.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2017-06-06 00:58:59 | 03e80f079d543f459d7f9303594863c0 |  19/61 (31.15%)
| VirLock | 5.101.4.41:443 |
| 2017-06-06 00:58:59 | 03e80f079d543f459d7f9303594863c0 | 19/61 (31.15%)
| VirLock | 5.101.4.41:443 |
| 2017-06-05 10:22:14 | b769861dfbd49a276615367cdf7db30e | 37/61 (60.66%)
| VirLock | 5.101.4.41:443 |
| 2017-06-05 10:22:14 | b769861dfbd49a276615367cdf7db30e | 37/61 (60.66%)
| VirLock | 5.101.4.41:443 |
| 2017-06-05 07:49:39 | 2037dcc42a9dc3f58c3b1fb71db5c827 | 42/59 (71.19%)
| VirLock | 5.101.4.41:443 |
| 2017-06-05 07:49:39 | 2037dcc42a9dc3f58c3b1fb71db5c827 | 42/59 (71.19%)
| VirLock | 5.101.4.41:443 |
| 2017-06-04 13:42:57 | f8a4acc4351f0a2c26d1f16b04bd18f3 | 35/62 (56.45%)
| VirLock | 5.101.4.41:443 |
| 2017-06-04 13:42:57 | f8a4acc4351f0a2c26d1f16b04bd18f3 | 35/62 (56.45%)
| VirLock | 5.101.4.41:443 |
| 2017-06-01 19:31:27 | 103bd590bf23741e7a0480c2392a2a93 | 35/62 (56.45%)
| VirLock | 5.101.4.41:443 |
| 2017-06-01 19:31:27 | 103bd590bf23741e7a0480c2392a2a93 | 35/62 (56.45%)
| VirLock | 5.101.4.41:443 |
| 2017-06-01 18:48:56 | a3898f11ac6a6aa08f6b0e1d361f1eba | 35/61 (57.38%)
| VirLock | 5.101.4.41:443 |
| 2017-06-01 18:48:56 | a3898f11ac6a6aa08f6b0e1d361f1eba | 35/61 (57.38%)
| VirLock | 5.101.4.41:443 |
| 2017-05-31 18:22:52 | 330c0cdfc5e9efd6eb3ae7c403a6d479 | 32/62 (51.61%)
| VirLock | 5.101.4.41:443 |
| 2017-05-31 18:22:52 | 330c0cdfc5e9efd6eb3ae7c403a6d479 | 32/62 (51.61%)
| VirLock | 5.101.4.41:443 |
| 2017-05-11 18:15:44 | 2e2bb7179b950c2b89963e1c66170932 | 20/62 (32.26%)
| VirLock | 123.206.198.12:8888 |
| 2017-05-11 18:15:44 | 2e2bb7179b950c2b89963e1c66170932 | 20/62 (32.26%)
| VirLock | 123.206.198.12:8888 |
| 2017-05-04 19:12:21 | 1b2d6842c55fee8bdc0605b5407d63f1 | 38/60 (63.33%)
| VirLock | 216.218.208.114:80 |
| 2017-05-04 19:12:21 | 1b2d6842c55fee8bdc0605b5407d63f1 | 38/60 (63.33%)
| VirLock | 216.218.208.114:80 |
| 2017-03-29 15:48:44 | 50e7975643eb0652113987737747dcae | 25/60 (41.67%)
| VirLock | 185.35.138.117:443 |
| 2017-03-29 15:48:44 | 50e7975643eb0652113987737747dcae | 25/60 (41.67%)
| VirLock | 185.35.138.117:443 |
| 2017-03-18 01:48:51 | 26e8663be637a75a44c17f497af44413 | 39/62 (62.90%)
| VirLock | 52.38.159.164:443 |
| 2017-03-18 01:48:51 | 26e8663be637a75a44c17f497af44413 | 39/62 (62.90%)
| VirLock | 52.38.159.164:443 |
| 2016-10-02 22:44:17 | 307f46dd913580c39e8f7170082403f5 | 40/57 (70.18%)
| VirLock | 62.22.91.92:443 |
| 2016-10-02 22:44:17 | 307f46dd913580c39e8f7170082403f5 | 40/57 (70.18%)
| VirLock | 62.22.91.92:443 |
| 2016-06-22 23:43:05 | fe27c1e99e260761b18fe922632e836e | n/a | VirLock | 85.204.49.106:443 |
| 2016-06-22 23:43:05 | fe27c1e99e260761b18fe922632e836e | n/a | VirLock | 85.204.49.106:443 |
| 2016-05-05 08:22:39 | 105bbfce79e02299383b2ce60c9a26b3 | 29/57 (50.88%)
| VirLock | 62.22.91.92:443 |
| 2016-05-05 08:22:39 | 105bbfce79e02299383b2ce60c9a26b3 | 29/57 (50.88%)
| VirLock | 62.22.91.92:443 |
| 2015-07-14 10:58:40 | c0721b3984adc1d437fbb12ae19612b7 | 15/56 (26.79%)
| VirLock | 69.164.213.85:1443 |
| 2015-07-14 10:58:40 | c0721b3984adc1d437fbb12ae19612b7 | 15/56 (26.79%)
| VirLock | 46.19.136.211:443 |
| 2015-07-14 10:58:40 | c0721b3984adc1d437fbb12ae19612b7 | 15/56 (26.79%)
| VirLock | 69.164.213.85:1443 |
| 2015-07-14 10:58:40 | c0721b3984adc1d437fbb12ae19612b7 | 15/56 (26.79%)
| VirLock | 46.19.136.211:443 |
| 2015-07-02 20:23:21 | ceea33d158ce87d2926d79298db9ca1d | 3/56 (5.36%)
| VirLock | 188.40.170.154:80 |
| 2015-07-02 20:23:21 | ceea33d158ce87d2926d79298db9ca1d | 3/56 (5.36%)
| VirLock | 188.40.170.154:80 |