chaos | Yashma-Ransomware-main[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

Yashma-Ransomware-main.zip
Size

155KB
MD5

e8403a7184c407130f2a1cd05c32919c
SHA1

0be3aeca29120efadbc37c4e9ce074fd530c06e5
SHA256

4cea74d80b0fed024d554aec6391dd7a4cc41abc44584b7b4617785d4842a1b0
SHA512

0f6b96ecc2318df177b9a4335f718261a48cf577574cb80b217ba2dff300b5a61da75f40264f4f95f4432c0eda8da5e0cdb68c2c22bbf7eaede58af923bd8776
SSDEEP

3072:IfUjZjB+4cQl18ClRkpf8b4yZWox0fbYgJVlSlcDZwngAgBVKu76LIw2/RbLpwLe:IKjBx1exoGbYOFBW+xLpaC7D8YRseByO

Score

10^/10

chaos

Malware Config

Signatures

Chaos Ransomware 1 IoCs

resource	yara_rule
static1/unpack001/Yashma-Ransomware-main/Yashma Ransomware/Resources/Source	family_chaos

Chaos family
chaos

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Yashma-Ransomware-main/Yashma Ransomware/Resources/decrypter

Files

Yashma-Ransomware-main.zip
.zip
Yashma-Ransomware-main/README.md
Yashma-Ransomware-main/Yashma Ransomware.sln
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/BlackForm.Designer.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/BlackForm.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/BlackForm.resx
.vbs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ButtonX.cs
.vbs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ButtonZ.cs
.vbs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/Compiler.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/Form2.Designer.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/Form2.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/Form2.resx
.vbs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/MinMaxButton.cs
.vbs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/ShapedButton.cs
.vbs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/advancedSettingForm.Designer.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/advancedSettingForm.cs
.js
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/advancedSettingForm.resx
.vbs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/extensions.Designer.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/extensions.cs
Yashma-Ransomware-main/Yashma Ransomware/CustomWindowsForm/extensions.resx
.vbs
Yashma-Ransomware-main/Yashma Ransomware/IconGroup32512.ico
Yashma-Ransomware-main/Yashma Ransomware/Program.cs
Yashma-Ransomware-main/Yashma Ransomware/Properties/AssemblyInfo.cs
Yashma-Ransomware-main/Yashma Ransomware/Properties/Resources.Designer.cs
.vbs
Yashma-Ransomware-main/Yashma Ransomware/Properties/Resources.resx
.vbs
Yashma-Ransomware-main/Yashma Ransomware/Properties/Settings.Designer.cs
.vbs
Yashma-Ransomware-main/Yashma Ransomware/Properties/Settings.settings
Yashma-Ransomware-main/Yashma Ransomware/Resources/Source
.js
Yashma-Ransomware-main/Yashma Ransomware/Resources/decrypter
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\User\Desktop\v7\Decrypter\decrypter\obj\Debug\Yashma decrypter.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Yashma-Ransomware-main/Yashma Ransomware/Yashma Ransomware.csproj
Yashma-Ransomware-main/Yashma Ransomware/app.config
Yashma-Ransomware-main/Yashma Ransomware/app.manifest

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 101KB - Virtual size: 101KB

.rsrc Size: 106KB - Virtual size: 106KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 106KB - Virtual size: 106KB

.reloc
Size: 512B - Virtual size: 12B