urelas | e12617f50b99a3afd880a1723094ae872e7989d8ac982a1bac3999fe4178c02b | Triage

Submit
Reports

Overview

overview

Static

static

NEAS.b8443...80.exe

windows7-x64

NEAS.b8443...80.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.b844358cbb8600301a083f41d3de6780.exe
Size

381KB
Sample

231101-rmcdvafa91
MD5

b844358cbb8600301a083f41d3de6780
SHA1

24953b3ee557d9de78c6ab74c44333ec1ff86e8e
SHA256

e12617f50b99a3afd880a1723094ae872e7989d8ac982a1bac3999fe4178c02b
SHA512

a5a83d2be2841772da9962778ffe2ca68fe21d5ed9c11a4b78ed391c925d7f08ef1b0f053faa5bdb5613e057690f43a0c638133f89cd500363e76d69d2293165
SSDEEP

6144:A6wArTEDSCs5wL0Spe5OpvGfnGUtdeHYhZpLkA:AfmQDSCs5woiCOpvmnqH0

Score

10^/10

urelas trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

NEAS.b844358cbb8600301a083f41d3de6780.exe

Resource

win7-20231020-en

urelas trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

NEAS.b844358cbb8600301a083f41d3de6780.exe

Resource

win10v2004-20231023-en

urelas trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

urelas

C2

1.234.83.146

133.242.129.155

218.54.31.226

218.54.31.165

Targets

- Target
  
  NEAS.b844358cbb8600301a083f41d3de6780.exe
- Size
  
  381KB
- MD5
  
  b844358cbb8600301a083f41d3de6780
- SHA1
  
  24953b3ee557d9de78c6ab74c44333ec1ff86e8e
- SHA256
  
  e12617f50b99a3afd880a1723094ae872e7989d8ac982a1bac3999fe4178c02b
- SHA512
  
  a5a83d2be2841772da9962778ffe2ca68fe21d5ed9c11a4b78ed391c925d7f08ef1b0f053faa5bdb5613e057690f43a0c638133f89cd500363e76d69d2293165
- SSDEEP
  
  6144:A6wArTEDSCs5wL0Spe5OpvGfnGUtdeHYhZpLkA:AfmQDSCs5woiCOpvmnqH0
Score

10^/10

urelas trojan upx
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

urelastrojanupx

behavioral2

urelastrojanupx

© 2018-2025

Terms | Privacy