General

  • Target

    1039533293886f4c874ab552f69f037d54751de9702207caea06cdb72c6aec26

  • Size

    365KB

  • Sample

    240310-x6p2yaah4w

  • MD5

    ab89477af3a7e3e1abae82e15f0c1a8b

  • SHA1

    da2b7055b2efc580f93ea1976bfe5c9ee0ecd7ac

  • SHA256

    1039533293886f4c874ab552f69f037d54751de9702207caea06cdb72c6aec26

  • SHA512

    3788652f513afd20a37bcd6f28411772d6893a7fe791f0041bac5dba9196aa37781963abf5e1b22157ac3ed29b1968c1720c006b067dae7d76ff488e49845f18

  • SSDEEP

    6144:OuJkl8DV12C28tLN2/FkCOfHVm0fMaHftvCGCBhDOHjTPmXHk62pT:OzGL2C2aZ2/F1WHHUaveOHjTX

Score
10/10

Malware Config

Extracted

Family

urelas

C2

1.234.83.146

133.242.129.155

218.54.31.165

218.54.31.226

Targets

    • Target

      1039533293886f4c874ab552f69f037d54751de9702207caea06cdb72c6aec26

    • Size

      365KB

    • MD5

      ab89477af3a7e3e1abae82e15f0c1a8b

    • SHA1

      da2b7055b2efc580f93ea1976bfe5c9ee0ecd7ac

    • SHA256

      1039533293886f4c874ab552f69f037d54751de9702207caea06cdb72c6aec26

    • SHA512

      3788652f513afd20a37bcd6f28411772d6893a7fe791f0041bac5dba9196aa37781963abf5e1b22157ac3ed29b1968c1720c006b067dae7d76ff488e49845f18

    • SSDEEP

      6144:OuJkl8DV12C28tLN2/FkCOfHVm0fMaHftvCGCBhDOHjTPmXHk62pT:OzGL2C2aZ2/F1WHHUaveOHjTX

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks