Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

NEAS.872a8...d0.exe

windows7-x64

10

NEAS.872a8...d0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.872a8871f090ce817f079b1fd6eba5d0.exe

  • Size

    83KB

  • Sample

    231102-t9n29shd5w

  • MD5

    872a8871f090ce817f079b1fd6eba5d0

  • SHA1

    be39c7abeabc7c37ddbfce5e1d4c7222946fd122

  • SHA256

    6fc67be59975392c35d59cf8316d3788d311a79045dd8b1fc63cc2b879f74502

  • SHA512

    7cc288ae47d59b393a2f6cbeceb1b6e1636b1a6a4d1c437bde8f02fed888a19a1c48cc14963e0cfb1eacb2fc5f1f274ab8c9acb7a10e2d754c7e89810bcdb5d3

  • SSDEEP

    1536:71PWJsDkhsc5lw2tPZ1QF30BqIHr6jIfvx:i5l3m3aqI2Ifvx

Score
10/10
urelastrojan

Malware Config

Extracted

Family

urelas

C2

218.54.28.139

121.88.5.183

Targets

    • Target

      NEAS.872a8871f090ce817f079b1fd6eba5d0.exe

    • Size

      83KB

    • MD5

      872a8871f090ce817f079b1fd6eba5d0

    • SHA1

      be39c7abeabc7c37ddbfce5e1d4c7222946fd122

    • SHA256

      6fc67be59975392c35d59cf8316d3788d311a79045dd8b1fc63cc2b879f74502

    • SHA512

      7cc288ae47d59b393a2f6cbeceb1b6e1636b1a6a4d1c437bde8f02fed888a19a1c48cc14963e0cfb1eacb2fc5f1f274ab8c9acb7a10e2d754c7e89810bcdb5d3

    • SSDEEP

      1536:71PWJsDkhsc5lw2tPZ1QF30BqIHr6jIfvx:i5l3m3aqI2Ifvx

    Score
    10/10
    urelastrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks