Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

Trojan-Ran...ox.exe

windows7-x64

Trojan-Ran...ox.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Trojan-Ransom.Win32.Cidox.afp-ec1989a30dfeb528f9c9835eed237cbba01d1b5f1dca23c9aea532c2bb93297d

  • Size

    88KB

  • Sample

    221107-qhkc8ahba9

  • MD5

    9ca9ab9961584999750d2589624cc6cc

  • SHA1

    c914b20e9b88bb165270179cabf81da7eaad0771

  • SHA256

    ec1989a30dfeb528f9c9835eed237cbba01d1b5f1dca23c9aea532c2bb93297d

  • SHA512

    c0bc2c7a99593a1111576488f8ec940d194daea37a794f80a1df9dc114ed111aeae5079d6b46728de78caba4dd98be2e9f6c1c333445864887719bc512b850cd

  • SSDEEP

    1536:jAK81LLuoYceJWCS+2HBQY5X4WuH8aC4pgumuJR/dKgQnv1ffA241K7o:kK81LL3AWCKHBQI/ucaCjQJR/djQv1Hc

Score
8/10
persistence

Malware Config

Targets

    • Target

      Trojan-Ransom.Win32.Cidox.afp-ec1989a30dfeb528f9c9835eed237cbba01d1b5f1dca23c9aea532c2bb93297d

    • Size

      88KB

    • MD5

      9ca9ab9961584999750d2589624cc6cc

    • SHA1

      c914b20e9b88bb165270179cabf81da7eaad0771

    • SHA256

      ec1989a30dfeb528f9c9835eed237cbba01d1b5f1dca23c9aea532c2bb93297d

    • SHA512

      c0bc2c7a99593a1111576488f8ec940d194daea37a794f80a1df9dc114ed111aeae5079d6b46728de78caba4dd98be2e9f6c1c333445864887719bc512b850cd

    • SSDEEP

      1536:jAK81LLuoYceJWCS+2HBQY5X4WuH8aC4pgumuJR/dKgQnv1ffA241K7o:kK81LL3AWCKHBQI/ucaCjQJR/djQv1Hc

    Score
    8/10
    persistence

    • Modifies AppInit DLL entries

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks