General
-
Target
2025-06-05_20dae810a14724720668fd2d291e06ed_chaos_destroyer_elex_wannacry
-
Size
28KB
-
Sample
250605-aq84jshn2w
-
MD5
20dae810a14724720668fd2d291e06ed
-
SHA1
c777be0ea5e407bb63f0f25a4c7a5068fdf9bab1
-
SHA256
87d5ef83e638ea1882c31381e4574837b0c3221e5e22f34a0e4db5fdfc025166
-
SHA512
934bdc1fbd4679aca4cc0e2025db191aaa27a59bb3bc4c1084a806309014deae3b1a5562970940fff2b66c09dd9aa4f04f5dd19c32e18b6a1dd5416d4bc98896
-
SSDEEP
384:kYeXjLLq0Hulks8/+rdQilBhoFOVp91DaDdib5DxDGV:tAulks6mdplcc9YDwb5xDq
Behavioral task
behavioral1
Sample
2025-06-05_20dae810a14724720668fd2d291e06ed_chaos_destroyer_elex_wannacry.exe
Resource
win10v2004-20250502-en
Malware Config
Extracted
C:\Users\Admin\read_it.txt
chaos
Targets
-
-
Target
2025-06-05_20dae810a14724720668fd2d291e06ed_chaos_destroyer_elex_wannacry
-
Size
28KB
-
MD5
20dae810a14724720668fd2d291e06ed
-
SHA1
c777be0ea5e407bb63f0f25a4c7a5068fdf9bab1
-
SHA256
87d5ef83e638ea1882c31381e4574837b0c3221e5e22f34a0e4db5fdfc025166
-
SHA512
934bdc1fbd4679aca4cc0e2025db191aaa27a59bb3bc4c1084a806309014deae3b1a5562970940fff2b66c09dd9aa4f04f5dd19c32e18b6a1dd5416d4bc98896
-
SSDEEP
384:kYeXjLLq0Hulks8/+rdQilBhoFOVp91DaDdib5DxDGV:tAulks6mdplcc9YDwb5xDq
Score10/10-
Chaos Ransomware
-
Chaos family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-