urelas | 4ca4aa84ae69db5b1d35bfc4aa4d6a1a0d925206cdb29c9ed41a7c762ca6be6b | Triage

Submit
Reports

Overview

overview

Static

static

33dac07ec4...18.exe

windows7-x64

33dac07ec4...18.exe

windows10-2004-x64

Sharing

General

Target

33dac07ec4f1d1dee2103dbead78561e_JaffaCakes118
Size

557KB
Sample

240710-jnml7svgkr
MD5

33dac07ec4f1d1dee2103dbead78561e
SHA1

09d7092f0e0a69c15547b0f1991c7222a80e60d8
SHA256

4ca4aa84ae69db5b1d35bfc4aa4d6a1a0d925206cdb29c9ed41a7c762ca6be6b
SHA512

d644b00d8bb78137ced6bf859f1e8fc248874d4405c3f44b9e26641452d95fadd156a22b183fa2921b74f513eae51997dbe2fa5fabab215f3487b17becf865b6
SSDEEP

12288:zccNvdRExZGe+Q1nSoS++43x+l7QLiaEyO:znPfQp9L3olqFO

Score

10^/10

urelas trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

33dac07ec4f1d1dee2103dbead78561e_JaffaCakes118.exe

Resource

win7-20240708-en

urelas trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

33dac07ec4f1d1dee2103dbead78561e_JaffaCakes118.exe

Resource

win10v2004-20240709-en

urelas trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

urelas

C2

1.234.83.146

133.242.129.155

218.54.31.226

218.54.31.165

Targets

- Target
  
  33dac07ec4f1d1dee2103dbead78561e_JaffaCakes118
- Size
  
  557KB
- MD5
  
  33dac07ec4f1d1dee2103dbead78561e
- SHA1
  
  09d7092f0e0a69c15547b0f1991c7222a80e60d8
- SHA256
  
  4ca4aa84ae69db5b1d35bfc4aa4d6a1a0d925206cdb29c9ed41a7c762ca6be6b
- SHA512
  
  d644b00d8bb78137ced6bf859f1e8fc248874d4405c3f44b9e26641452d95fadd156a22b183fa2921b74f513eae51997dbe2fa5fabab215f3487b17becf865b6
- SSDEEP
  
  12288:zccNvdRExZGe+Q1nSoS++43x+l7QLiaEyO:znPfQp9L3olqFO
Score

10^/10

urelas trojan upx
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

urelastrojanupx

behavioral2

urelastrojanupx

© 2018-2024

Terms | Privacy