YashmaRansom
Yashma/Chaos ransomware. Open source builder. svchost.exe disguise. AES-256+RSA-2048. .wallet file destination.
Threat Profile
Type
Ransomware
Programming LanguageC#/.NET
C2 ProtocolHTTPS
First Seen2022
Targets
Kuresel
Purpose / Capabilities
- ransomware
No C2 servers have been identified for this family yet.
Research Reports (1)
Yashma / Chaos Ransomware -- svchost.exe, AES+RSA, BTC 1163hSV1, .wallet Hedef | Kritik
Yashma/Chaos 289KB svchost.exe. encryptionAesRsa + checkdeleteShadowCopies. BTC 1163hSV1jJ. .wallet dosya hedefi.
Read Report →