Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
HEUR-Trojan-Ransom.MSIL.Crypren.gen-416d2f821b7cb984859cfce43be981c5c9bc1489446ba41951c041d5801b65cb.exe
-
Size
322KB
-
Sample
220920-fppleacac2
-
MD5
39f33d6842fa6495ccd7a41e8ddcb9b8
-
SHA1
61cd2b3e22e2e6e514d611d3154e001f7e9fd195
-
SHA256
416d2f821b7cb984859cfce43be981c5c9bc1489446ba41951c041d5801b65cb
-
SHA512
97e8b15b82b70efebbf5cbfbbd4ac4925a7300049f5866bf01b59396de43c633342b5bc2ed657aae573c9f77e2dd20fe67234110aef048c49a2af9c8bd45dc29
-
SSDEEP
3072:iMMFnguNpdYSkMXV2KMMEuWgY792XaY6UTuuAk2usbA+klAGPqhdp4efHxub8ehY:ideMXVeuWgY79OWpmq/yQxuAeS9Jb/
Static task
static1
Behavioral task
behavioral1
Sample
HEUR-Trojan-Ransom.MSIL.Crypren.gen-416d2f821b7cb984859cfce43be981c5c9bc1489446ba41951c041d5801b65cb.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
HEUR-Trojan-Ransom.MSIL.Crypren.gen-416d2f821b7cb984859cfce43be981c5c9bc1489446ba41951c041d5801b65cb.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
HEUR-Trojan-Ransom.MSIL.Crypren.gen-416d2f821b7cb984859cfce43be981c5c9bc1489446ba41951c041d5801b65cb.exe
-
Size
322KB
-
MD5
39f33d6842fa6495ccd7a41e8ddcb9b8
-
SHA1
61cd2b3e22e2e6e514d611d3154e001f7e9fd195
-
SHA256
416d2f821b7cb984859cfce43be981c5c9bc1489446ba41951c041d5801b65cb
-
SHA512
97e8b15b82b70efebbf5cbfbbd4ac4925a7300049f5866bf01b59396de43c633342b5bc2ed657aae573c9f77e2dd20fe67234110aef048c49a2af9c8bd45dc29
-
SSDEEP
3072:iMMFnguNpdYSkMXV2KMMEuWgY792XaY6UTuuAk2usbA+klAGPqhdp4efHxub8ehY:ideMXVeuWgY79OWpmq/yQxuAeS9Jb/
Score8/10-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Drops desktop.ini file(s)
-