Overview

overview

10

Static

static

10

NEAS.7f27f...JC.exe

windows7-x64

10

NEAS.7f27f...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.7f27fb91c862de8d7d1b38571eb975f0_JC.exe

  • Size

    456KB

  • Sample

    231023-ycws3adg8w

  • MD5

    7f27fb91c862de8d7d1b38571eb975f0

  • SHA1

    2c61422715d762b59177a500c7c38286b1e11e98

  • SHA256

    bfa75ec54114851e066cd66877ae57e85f9614599eb8c69a4035f386e027a595

  • SHA512

    316e3fe41c403aad91e93dc12152d04c8eeb5ee2ea5da8a92dad02689f32ec11692299aef917fdc3af0edf27767acae709d4453917b8e9b2dbcf71853b36e601

  • SSDEEP

    6144:l+89tuc2/zrVhVa2H6jkEgAnLjCyl5afu/KQw3hwglo8uBqjnv6D3WwhD5RzC91O:lJYH6jkEgAnieafuzQTlhuwv6Dd9C9w

Score
10/10
urelasaspackv2trojan

Malware Config

Targets

    • Target

      NEAS.7f27fb91c862de8d7d1b38571eb975f0_JC.exe

    • Size

      456KB

    • MD5

      7f27fb91c862de8d7d1b38571eb975f0

    • SHA1

      2c61422715d762b59177a500c7c38286b1e11e98

    • SHA256

      bfa75ec54114851e066cd66877ae57e85f9614599eb8c69a4035f386e027a595

    • SHA512

      316e3fe41c403aad91e93dc12152d04c8eeb5ee2ea5da8a92dad02689f32ec11692299aef917fdc3af0edf27767acae709d4453917b8e9b2dbcf71853b36e601

    • SSDEEP

      6144:l+89tuc2/zrVhVa2H6jkEgAnLjCyl5afu/KQw3hwglo8uBqjnv6D3WwhD5RzC91O:lJYH6jkEgAnieafuzQTlhuwv6Dd9C9w

    Score
    10/10
    urelasaspackv2trojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks