chaos | b1097f0a2b5b4b82e28cbd9953dd8b7c[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1097f0a2b5b4b82e28cbd9953dd8b7c.bin
Size

47KB
MD5

3b6714bc54139608a3ee87d3d6cbaff2
SHA1

6b3823db39a72e48f6357216629ea7c0f5cc58a2
SHA256

7f1c806adc3eda59102e14cf447c120152bca8b0835bffb5ee89124db73634f7
SHA512

133953f7ba3fdae56e9baba3d73f719199d593dfcab15f67bec7e2e5d81a451efa9f3e28841e8d92c36ee8ee8cc082ffabcd331c353d7ebb5ab9c4805e6f3c7f
SSDEEP

768:/jK8zPuGTz1Q1AiL2F6SDI1kN29hOGh/44fyzzh8B8yR6Fl168RoDtsFwss4h0xw:p2OQTLe9N29hwzhuv86DtsFwN4hOaPHF

Score

10^/10

chaos

Malware Config

Signatures

Chaos Ransomware 1 IoCs

resource	yara_rule
static1/unpack001/2e1ee2e824021c57e3c6a1dd63845e79ce78307e8c5192b6ead55e214133dd12.exe	family_chaos

Chaos family
chaos

Files

b1097f0a2b5b4b82e28cbd9953dd8b7c.bin
.zip

Password: infected
2e1ee2e824021c57e3c6a1dd63845e79ce78307e8c5192b6ead55e214133dd12.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ