urelas | fe3d184fa112c9b908e9a584ce056d10dd6ed12f19838f9748bc4f45c293412c | Triage

Submit
Reports

Overview

overview

Static

static

fe3d184fa1...2c.exe

windows7-x64

fe3d184fa1...2c.exe

windows10-2004-x64

Sharing

General

Target

fe3d184fa112c9b908e9a584ce056d10dd6ed12f19838f9748bc4f45c293412c
Size

79KB
Sample

240711-kwyj4s1gpe
MD5

5d6d513cf8349694df4254579c218ac8
SHA1

f00b37380f266540c87ab1b68dd4dca10019fdcb
SHA256

fe3d184fa112c9b908e9a584ce056d10dd6ed12f19838f9748bc4f45c293412c
SHA512

157ee0a21466eb7017280171cc444083ba433fe02d9540306834dd9e54a26daa5780e4f4e1e128aa5cf4da4ebf47ba802e2e55348ef0e09dbae458734c2e9d97
SSDEEP

1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDEk:9RkjWjK9ABpGzlaRQLl

Score

10^/10

urelas trojan upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

fe3d184fa112c9b908e9a584ce056d10dd6ed12f19838f9748bc4f45c293412c.exe

Resource

win7-20240708-en

urelas trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

fe3d184fa112c9b908e9a584ce056d10dd6ed12f19838f9748bc4f45c293412c.exe

Resource

win10v2004-20240709-en

urelas trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

urelas

C2

218.54.47.77

218.54.47.74

Targets

- Target
  
  fe3d184fa112c9b908e9a584ce056d10dd6ed12f19838f9748bc4f45c293412c
- Size
  
  79KB
- MD5
  
  5d6d513cf8349694df4254579c218ac8
- SHA1
  
  f00b37380f266540c87ab1b68dd4dca10019fdcb
- SHA256
  
  fe3d184fa112c9b908e9a584ce056d10dd6ed12f19838f9748bc4f45c293412c
- SHA512
  
  157ee0a21466eb7017280171cc444083ba433fe02d9540306834dd9e54a26daa5780e4f4e1e128aa5cf4da4ebf47ba802e2e55348ef0e09dbae458734c2e9d97
- SSDEEP
  
  1536:9HxkDvWdB7O9dKymMyCMGni2Lz1LaRQLDEk:9RkjWjK9ABpGzlaRQLl
Score

10^/10

urelas trojan upx
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

urelastrojanupx

behavioral2

urelastrojanupx

© 2018-2024

Terms | Privacy