General
-
Target
https://vx-underground.org/Archive/Builders
-
Sample
240319-zsgvhsfe43
Score
10/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://vx-underground.org/Archive/Builders
Resource
win11-20240221-en
28 signatures
300 seconds
Malware Config
Extracted
Path
C:\Users\Default\read_it.txt
Ransom Note
Don't worry, you can return all your files!
All your files like documents, photos, databases and other important are encrypted
What guarantees do we give to you?
You can send 3 of your encrypted files and we decrypt it for free.
You must follow these steps To decrypt your files :
1) Write on our e-mail :[email protected] ( In case of no answer in 24 hours check your spam folder
or write us to this e-mail: [email protected])
2) Obtain Bitcoin (You have to pay for decryption in Bitcoins.
After payment we will send you the tool that will decrypt all your files.)
Targets
-
-
Target
https://vx-underground.org/Archive/Builders
Score10/10-
Chaos Ransomware
-
Modifies boot configuration data using bcdedit
-
Disables Task Manager via registry modification
-
Drops startup file
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-