General
-
Target
05efe778c9253dc647b2667b4c821426a427607d3676e1d03a7e02c5b1e7279c
-
Size
27KB
-
Sample
230815-qwaqyaba29
-
MD5
f680f45e190c032931f189ab71caecbc
-
SHA1
02b52470aabee1a8f2700d902e249bf19ec0d945
-
SHA256
05efe778c9253dc647b2667b4c821426a427607d3676e1d03a7e02c5b1e7279c
-
SHA512
5647471f0fb9c01f7dd1767fafac4e40409fefac241caa4f64d86e42b7705f623a1cc7be49388dda76144261a3a7d3c42dd04ef134983ef15de0c10ddaef3294
-
SSDEEP
384:3tWZPzzxAm1vaohWAdZ71+kezxBSKrvylvOy5o91z1rxYlf82vi:O7zxAmphxdZgke26Aho9dre826
Behavioral task
behavioral1
Sample
05efe778c9253dc647b2667b4c821426a427607d3676e1d03a7e02c5b1e7279c.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
05efe778c9253dc647b2667b4c821426a427607d3676e1d03a7e02c5b1e7279c.exe
Resource
win10v2004-20230703-en
Malware Config
Targets
-
-
Target
05efe778c9253dc647b2667b4c821426a427607d3676e1d03a7e02c5b1e7279c
-
Size
27KB
-
MD5
f680f45e190c032931f189ab71caecbc
-
SHA1
02b52470aabee1a8f2700d902e249bf19ec0d945
-
SHA256
05efe778c9253dc647b2667b4c821426a427607d3676e1d03a7e02c5b1e7279c
-
SHA512
5647471f0fb9c01f7dd1767fafac4e40409fefac241caa4f64d86e42b7705f623a1cc7be49388dda76144261a3a7d3c42dd04ef134983ef15de0c10ddaef3294
-
SSDEEP
384:3tWZPzzxAm1vaohWAdZ71+kezxBSKrvylvOy5o91z1rxYlf82vi:O7zxAmphxdZgke26Aho9dre826
Score10/10-
Chaos Ransomware
-
Modifies boot configuration data using bcdedit
-
Disables Task Manager via registry modification
-
Drops startup file
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-