Overview

overview

10

Static

static

3

3a27f0e0ce...4d.exe

windows7-x64

10

3a27f0e0ce...4d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a27f0e0ce51850fadf827aa71ac6980c8e86a8faeaa7d4af268aed4af76c54d

  • Size

    61KB

  • Sample

    240726-zjezkaxalg

  • MD5

    1991fa7f68eb51bda59c016cc5736385

  • SHA1

    857090a6439901aeca151e45507eace8d00589b0

  • SHA256

    3a27f0e0ce51850fadf827aa71ac6980c8e86a8faeaa7d4af268aed4af76c54d

  • SHA512

    3d73f857024b2fb20e338c4fae0d0db4c7562e3a7a8bb36db066ccf85fb14fb322996cc13d373926ae6de2215c8dad0bf7e95c91d34d96e674deaba7f239b239

  • SSDEEP

    1536:saTkcl2v/z0thjkh6+uYLo31d0JuPrROVz:Jo0cAthu6+FQ0JuPkz

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

    • Target

      3a27f0e0ce51850fadf827aa71ac6980c8e86a8faeaa7d4af268aed4af76c54d

    • Size

      61KB

    • MD5

      1991fa7f68eb51bda59c016cc5736385

    • SHA1

      857090a6439901aeca151e45507eace8d00589b0

    • SHA256

      3a27f0e0ce51850fadf827aa71ac6980c8e86a8faeaa7d4af268aed4af76c54d

    • SHA512

      3d73f857024b2fb20e338c4fae0d0db4c7562e3a7a8bb36db066ccf85fb14fb322996cc13d373926ae6de2215c8dad0bf7e95c91d34d96e674deaba7f239b239

    • SSDEEP

      1536:saTkcl2v/z0thjkh6+uYLo31d0JuPrROVz:Jo0cAthu6+FQ0JuPkz

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks