urelas | 79ca175134b626e68bd8c46e03e10aca218d736fb32449cf9c7a4defea5effef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b6b1b718c55bcd1ce7631a0099e0b30
Size

195KB
Sample

240108-pgmaraaeb8
MD5

4b6b1b718c55bcd1ce7631a0099e0b30
SHA1

d179a360e6f442aee240ecf6e5d663c3c06465db
SHA256

79ca175134b626e68bd8c46e03e10aca218d736fb32449cf9c7a4defea5effef
SHA512

8a384d9eb3655bd1b19fa8babb90e137b97b90e7e673999d6c1f6c9b9946696cafb4152a0a1e2b86fa20a4558a5092c2dcfa77b402fdd505f84b6f7654dc23bf
SSDEEP

3072:gAwixCZ6Sh77R2Gpf606U8v0e7OIgPDFIbbzhPM67fIhgLi:gExhk7rh7NEOIYWlPM6r6B

Score

10^/10

urelas trojan

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

- Target
  
  4b6b1b718c55bcd1ce7631a0099e0b30
- Size
  
  195KB
- MD5
  
  4b6b1b718c55bcd1ce7631a0099e0b30
- SHA1
  
  d179a360e6f442aee240ecf6e5d663c3c06465db
- SHA256
  
  79ca175134b626e68bd8c46e03e10aca218d736fb32449cf9c7a4defea5effef
- SHA512
  
  8a384d9eb3655bd1b19fa8babb90e137b97b90e7e673999d6c1f6c9b9946696cafb4152a0a1e2b86fa20a4558a5092c2dcfa77b402fdd505f84b6f7654dc23bf
- SSDEEP
  
  3072:gAwixCZ6Sh77R2Gpf606U8v0e7OIgPDFIbbzhPM67fIhgLi:gExhk7rh7NEOIYWlPM6r6B
Score

10^/10

urelas trojan
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2