Overview

overview

10

Static

static

3

7dbd4239b3...96.exe

windows7-x64

10

7dbd4239b3...96.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7dbd4239b32355b9f1d34f409f1361d19aea2eb82cc3851b91aa03891c951396

  • Size

    7.0MB

  • Sample

    240705-3dtgjsyfjp

  • MD5

    144ae55cea51c023773ec3a6b230897b

  • SHA1

    7cbbb999f4b0e2d52580c61c33acdcf5a35601fd

  • SHA256

    7dbd4239b32355b9f1d34f409f1361d19aea2eb82cc3851b91aa03891c951396

  • SHA512

    6061a5ec330910166e6e2b92d0d9337393581ccae04b1840116d3a89bfd639b2c4e92ee35f2a57260a6c071dd06569157008819f3da0c41a5fb9c6f895376c30

  • SSDEEP

    196608:SYxLhf0/MeQTZ62nl1E++jQsUfp6buEAbhRAXwKe9kuHQl77C:XyMex+l6++EsjaEi1KvNl7+

Score
10/10
urelastrojan

Malware Config

Extracted

Family

urelas

C2

1.234.83.146

133.242.129.155

218.54.31.226

218.54.31.165

Targets

    • Target

      7dbd4239b32355b9f1d34f409f1361d19aea2eb82cc3851b91aa03891c951396

    • Size

      7.0MB

    • MD5

      144ae55cea51c023773ec3a6b230897b

    • SHA1

      7cbbb999f4b0e2d52580c61c33acdcf5a35601fd

    • SHA256

      7dbd4239b32355b9f1d34f409f1361d19aea2eb82cc3851b91aa03891c951396

    • SHA512

      6061a5ec330910166e6e2b92d0d9337393581ccae04b1840116d3a89bfd639b2c4e92ee35f2a57260a6c071dd06569157008819f3da0c41a5fb9c6f895376c30

    • SSDEEP

      196608:SYxLhf0/MeQTZ62nl1E++jQsUfp6buEAbhRAXwKe9kuHQl77C:XyMex+l6++EsjaEi1KvNl7+

    Score
    10/10
    urelastrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks