General

  • Target

    be46538a0643cbf9d8462f3a02d5941b

  • Size

    207KB

  • Sample

    240310-llejxshh5v

  • MD5

    be46538a0643cbf9d8462f3a02d5941b

  • SHA1

    c82799260445c8dba14fc54ead86f6145b9d7f17

  • SHA256

    7448eb9a12d406bd6957483597016f9003e1e836af06561358f6513591f5aa29

  • SHA512

    839a6250662aad58d0a662f13a934d2fa37374c56a4df679696e72c0be7747d2794e9f824cf879ff7076c4618d8de3ae072a7c8615dd02f9c980f9758243fcb9

  • SSDEEP

    1536:1BucKHs7K2HEG7BpoWiZBYHs977q+7INVdU2Aneb61TVcz+3MJb6rcB:PuchogM57bIL+eb61TVa+3MJb6a

Score
10/10

Malware Config

Extracted

Family

urelas

C2

112.175.88.208

112.175.88.209

112.175.88.207

Targets

    • Target

      be46538a0643cbf9d8462f3a02d5941b

    • Size

      207KB

    • MD5

      be46538a0643cbf9d8462f3a02d5941b

    • SHA1

      c82799260445c8dba14fc54ead86f6145b9d7f17

    • SHA256

      7448eb9a12d406bd6957483597016f9003e1e836af06561358f6513591f5aa29

    • SHA512

      839a6250662aad58d0a662f13a934d2fa37374c56a4df679696e72c0be7747d2794e9f824cf879ff7076c4618d8de3ae072a7c8615dd02f9c980f9758243fcb9

    • SSDEEP

      1536:1BucKHs7K2HEG7BpoWiZBYHs977q+7INVdU2Aneb61TVcz+3MJb6rcB:PuchogM57bIL+eb61TVa+3MJb6a

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks