urelas | d46f9f2b89545bcf7bfec0095afbb20e21c8a607e2ef0bb335b797d66a8dbdf8 | Triage

Sharing

General

Target

3a65a8bcbcb8bc2e9fc2f552acef537b
Size

441KB
Sample

231231-tamedscca7
MD5

3a65a8bcbcb8bc2e9fc2f552acef537b
SHA1

6229e056389178f49dad89c66d12772022f3d778
SHA256

d46f9f2b89545bcf7bfec0095afbb20e21c8a607e2ef0bb335b797d66a8dbdf8
SHA512

13429d116a08ef19b59ac27b6d9b4f165e1585c7511548d152b9e240b06555ff4fccb2aea18271a5435a1f87499db4a74d949aa51cd62f12e50ea1f63e45e0d9
SSDEEP

6144:oo3wBi+1Py3V0a2WkRNgi3caOHO5NjEwwiYWB5mV4Pzw9ygibGGMB:rKf1PyKa2H3hOHOHz9JQ6zBm

Score

10^/10

urelas trojan

Malware Config

Extracted

Family

urelas

C2

1.234.83.146

133.242.129.155

218.54.31.165

218.54.31.226

Targets

- Target
  
  3a65a8bcbcb8bc2e9fc2f552acef537b
- Size
  
  441KB
- MD5
  
  3a65a8bcbcb8bc2e9fc2f552acef537b
- SHA1
  
  6229e056389178f49dad89c66d12772022f3d778
- SHA256
  
  d46f9f2b89545bcf7bfec0095afbb20e21c8a607e2ef0bb335b797d66a8dbdf8
- SHA512
  
  13429d116a08ef19b59ac27b6d9b4f165e1585c7511548d152b9e240b06555ff4fccb2aea18271a5435a1f87499db4a74d949aa51cd62f12e50ea1f63e45e0d9
- SSDEEP
  
  6144:oo3wBi+1Py3V0a2WkRNgi3caOHO5NjEwwiYWB5mV4Pzw9ygibGGMB:rKf1PyKa2H3hOHOHz9JQ6zBm
Score

10^/10

urelas trojan
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2