General

  • Target

    4de832a2c2b204f67e76ce17628ae717fc73481baf05bca3fe74ebb0bcbd2d00

  • Size

    63KB

  • Sample

    240311-z8qglaef9x

  • MD5

    c8047e446ca1af3bc0bdaca78e3abe70

  • SHA1

    7ac8e0401fcee5fd84c78e2c9e9fff66d86ce829

  • SHA256

    4de832a2c2b204f67e76ce17628ae717fc73481baf05bca3fe74ebb0bcbd2d00

  • SHA512

    f72d225d4bcf1c5228d956a67bec0ccdb6c4ef2ef2f43d7d8fcb35ca16e0218aef85a9d217b65c6b30c4588e5cfb758d630c5402d30bb286d85f4b4077e166c3

  • SSDEEP

    1536:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdQouk:K0GAqjuVZ6rNOFuk

Score
10/10

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

    • Target

      4de832a2c2b204f67e76ce17628ae717fc73481baf05bca3fe74ebb0bcbd2d00

    • Size

      63KB

    • MD5

      c8047e446ca1af3bc0bdaca78e3abe70

    • SHA1

      7ac8e0401fcee5fd84c78e2c9e9fff66d86ce829

    • SHA256

      4de832a2c2b204f67e76ce17628ae717fc73481baf05bca3fe74ebb0bcbd2d00

    • SHA512

      f72d225d4bcf1c5228d956a67bec0ccdb6c4ef2ef2f43d7d8fcb35ca16e0218aef85a9d217b65c6b30c4588e5cfb758d630c5402d30bb286d85f4b4077e166c3

    • SSDEEP

      1536:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdQouk:K0GAqjuVZ6rNOFuk

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks