urelas | 8f62e85b6234086b2d8cdeff2eaaec891602d777d946a64c35f0a8831a4cbc61 | Triage

Sharing

General

Target

8f62e85b6234086b2d8cdeff2eaaec891602d777d946a64c35f0a8831a4cbc61
Size

999KB
Sample

240315-1pzftsbh8x
MD5

804524de8c35e0f453cfccc83a5f4726
SHA1

6e476f64aeec26e3cefb02ed46d0cbbd6a48a60d
SHA256

8f62e85b6234086b2d8cdeff2eaaec891602d777d946a64c35f0a8831a4cbc61
SHA512

8c8549ee9e55bf4da6e8250c9fd5ae8cd92e0eee4a8ee1a7282360c8c9dc5e20beb8ce875581dd3246e7e017d9676054d53b962f03a91050977d16c55edb0ac3
SSDEEP

24576:1ydHl4Vi6qm7Aa1UaW7J5RzkF2o5x6RrAyB:wl4Viw7zUTNQF2o6xB

Score

10^/10

urelas trojan

Malware Config

Targets

- Target
  
  8f62e85b6234086b2d8cdeff2eaaec891602d777d946a64c35f0a8831a4cbc61
- Size
  
  999KB
- MD5
  
  804524de8c35e0f453cfccc83a5f4726
- SHA1
  
  6e476f64aeec26e3cefb02ed46d0cbbd6a48a60d
- SHA256
  
  8f62e85b6234086b2d8cdeff2eaaec891602d777d946a64c35f0a8831a4cbc61
- SHA512
  
  8c8549ee9e55bf4da6e8250c9fd5ae8cd92e0eee4a8ee1a7282360c8c9dc5e20beb8ce875581dd3246e7e017d9676054d53b962f03a91050977d16c55edb0ac3
- SSDEEP
  
  24576:1ydHl4Vi6qm7Aa1UaW7J5RzkF2o5x6RrAyB:wl4Viw7zUTNQF2o6xB
Score

10^/10

urelas trojan
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2