General

  • Target

    4b8ad55c9558822bb0947ac6d7e0b680N.exe

  • Size

    61KB

  • Sample

    240725-bwcszazdmm

  • MD5

    4b8ad55c9558822bb0947ac6d7e0b680

  • SHA1

    ebad0fd5cfa55f6acdd9630f717845a7aad8f3c5

  • SHA256

    0618dfad1f6829e499ed94c6e98a652ae41d580a172266181d246835f45c1960

  • SHA512

    a68c43546ffe06c3b92433c28a4a25fd3fd375cab6e12d135b0e3edc34c88fa1c55171924dc92d5a13dcd373ca1e23bba381da52c6b09a670906e4d4f15ca402

  • SSDEEP

    1536:saTkcl2v/z0thjkh6+uYLo31d0JuPrROVe:Jo0cAthu6+FQ0JuPke

Score
10/10

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

    • Target

      4b8ad55c9558822bb0947ac6d7e0b680N.exe

    • Size

      61KB

    • MD5

      4b8ad55c9558822bb0947ac6d7e0b680

    • SHA1

      ebad0fd5cfa55f6acdd9630f717845a7aad8f3c5

    • SHA256

      0618dfad1f6829e499ed94c6e98a652ae41d580a172266181d246835f45c1960

    • SHA512

      a68c43546ffe06c3b92433c28a4a25fd3fd375cab6e12d135b0e3edc34c88fa1c55171924dc92d5a13dcd373ca1e23bba381da52c6b09a670906e4d4f15ca402

    • SSDEEP

      1536:saTkcl2v/z0thjkh6+uYLo31d0JuPrROVe:Jo0cAthu6+FQ0JuPke

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks