General

  • Target

    40d857d0739c14c4fb651b1aa121d302730daee78762169a4fc2cd42ac30098e

  • Size

    79KB

  • Sample

    240310-zhjlcsbh3z

  • MD5

    51406350b72fd30783d6fe2aabdb1fbb

  • SHA1

    a4c178f93d26bc501f0b5ff4818557abc18ff149

  • SHA256

    40d857d0739c14c4fb651b1aa121d302730daee78762169a4fc2cd42ac30098e

  • SHA512

    72707c50eee327334c565793094ea904d388ab027855a73b6a4987e874e10da9f2fce8df1ec08f966a5a1da92853874b3324be8bd9ce0252c12191f0f73cca29

  • SSDEEP

    1536:zxKyhnAUfUiZR9G84qk+Be/HZ17hmZpDs7:zLCEZTGx518o7

Score
10/10

Malware Config

Extracted

Family

urelas

C2

218.54.28.139

121.88.5.183

Targets

    • Target

      40d857d0739c14c4fb651b1aa121d302730daee78762169a4fc2cd42ac30098e

    • Size

      79KB

    • MD5

      51406350b72fd30783d6fe2aabdb1fbb

    • SHA1

      a4c178f93d26bc501f0b5ff4818557abc18ff149

    • SHA256

      40d857d0739c14c4fb651b1aa121d302730daee78762169a4fc2cd42ac30098e

    • SHA512

      72707c50eee327334c565793094ea904d388ab027855a73b6a4987e874e10da9f2fce8df1ec08f966a5a1da92853874b3324be8bd9ce0252c12191f0f73cca29

    • SSDEEP

      1536:zxKyhnAUfUiZR9G84qk+Be/HZ17hmZpDs7:zLCEZTGx518o7

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks