Threat Database Ransomware Chaos-Azazel Ransomware

Chaos-Azazel Ransomware

Users' computer systems are threatened by another destructive ransomware. Tracked by infosec researchers as the Azazel Ransomware, this threat is designed to lock its victim's data and then extort payments for its supposed restoration. Although Azazel is not an entirely unique threat, as analysis has revealed that it is a variant from the Chaos Ransomware family, its intrusive activities can disrupt the compromised devices completely.

Victims will notice that none of their documents, PDFs, databases, archives, etc. are accessible. This is a result of the encryption algorithm that the Azazel Ransomware uses to lock numerous targeted file types. The name of each encrypted file will be changed with '.Azazel' appended as a new file extension. The ransom note of the threat will be dropped on the infected computer as a text file named 'read_it.txt.' In addition, the default desktop wallpaper image will be changed to a new one delivered by the threat.

Ransom Note's Details

According to the text of the ransom-demanding message, Azazel (Chaos) is targeting users from all around the world. The attackers simply tell their victims to translate the note into their native language, if they do not understand the instructions.

Azazel's operators claim that the restoration of the encrypted files without using their decryption software is impossible. However, to send the tool to their victims, the cybercriminals demand to be paid a ransom of exactly $1,500. The funds must be transferred by the affected users to the crypto-wallet address found inside the note. Furthermore, for the payment to be accepted by the hackers, it must be made using the Bitcoin cryptocurrency.

The full text of Azazel Ransowmare's note is:

'----> Chaos is multi language ransomware. Translate your note to any language <----
All of your files have been encrypted
Your computer was infected with a ransomware virus. Your files have been encrypted and you won't
be able to decrypt them without our help.What can I do to get my files back?You can buy our special
decryption software, this software will allow you to recover all of your data and remove the
ransomware from your computer.The price for the software is $1,500. Payment can be made in Bitcoin only.
How do I pay, where do I get Bitcoin?
Purchasing Bitcoin varies from country to country, you are best advised to do a quick google search
yourself to find out how to buy Bitcoin.
Many of our customers have reported these sites to be fast and reliable:
Coinmama - hxxps:// Bitpanda - hxxps://

Payment informationAmount: 0.1473766 BTC
Bitcoin Address: bc1qlnzcep4l4ac0ttdrq7awxev9ehu465f2vpt9x0


Most Viewed