Resubmissions

20-04-2024 07:35

240420-je38lacd2y 9

19-04-2024 20:29

240419-y9v8ssfe4z 9

General

  • Target

    Chaos_V2_FIXED.zip

  • Size

    14.8MB

  • MD5

    1fcddf9daae6135260518069b8438411

  • SHA1

    bd416305c6e071d7fffe47baadab7380faee1dce

  • SHA256

    9d08ae69118892ea1c52c7de851489669381d7f22da553279f7294a647428dc5

  • SHA512

    99003e5966400f155df49b8f60d4f32a460af61f1e4f2e2fd7d5138c0977abda281447660fa1f52a6158789d16f05e4537cb186208036ea8d2beba8519b27c1d

  • SSDEEP

    393216:Lgh0q07BIaAbv5OuNabe+yClD+iQw9Ddc5hsAYnLqy:k82v5nprKHN95W6AALt

Score
7/10

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Chaos_V2_FIXED.zip
    .zip
  • Chaos.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections

  • fpsunlocker.exe
    .exe windows:6 windows x64 arch:x64

    b67b812388a1094acd5db594749b4971


    Headers

    Imports

    Sections

  • ps.py
    .py .js
  • pssuspend.exe
    .exe windows:6 windows x86 arch:x86

    32f7a5e0ecd105d509a9d9677d178190


    Code Sign

    Headers

    Imports

    Sections