chaos | 2365ec365b07374230d773f946d88da2[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2365ec365b07374230d773f946d88da2.bin
Size

1.2MB
MD5

348cd0e745b7190fbc46c573aa9b9646
SHA1

c68d00bb39fc3fc085601cc92ae339db32955356
SHA256

f2698eada64f149106c605d5b9071368e1595208d2e9a10ffde0c15410dc5e58
SHA512

71980d1379b1930d2e4bbf2bc955a68545abeb175f99d97d61ef8867c088ff8873c2f5526c2a6d48608185f6768c02d223c5cd2d7a79b5aaf619b28197ebb8a2
SSDEEP

24576:3Sdtw+IaUBGRH8fbLArMx5T8Y7LtvOsxiNiUER0bXi:3S5QB+8fbUMwUZvngEN

Score

10^/10

chaos

Malware Config

Signatures

Chaos Ransomware 1 IoCs

resource	yara_rule
static1/unpack001/e6de7531d2c7900ff73b30e33170fd7530fb7771518503c65203b1a419a8d11e.exe	family_chaos

Chaos family
chaos

Files

2365ec365b07374230d773f946d88da2.bin
.zip

Password: infected
e6de7531d2c7900ff73b30e33170fd7530fb7771518503c65203b1a419a8d11e.exe
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ