YashmaRansom

Yashma/Chaos ransomware. Open source builder. svchost.exe disguise. AES-256+RSA-2048. .wallet file destination.

Threat Profile
Type Ransomware
Programming LanguageC#/.NET
C2 ProtocolHTTPS
First Seen2022
Targets Kuresel
Purpose / Capabilities
  • ransomware
No C2 servers have been identified for this family yet.

Research Reports (1)

Critical

Yashma / Chaos Ransomware -- svchost.exe, AES+RSA, BTC 1163hSV1, .wallet Hedef | Kritik

Yashma/Chaos 289KB svchost.exe. encryptionAesRsa + checkdeleteShadowCopies. BTC 1163hSV1jJ. .wallet dosya hedefi.

Read Report →