Overview

overview

10

Static

static

3

b8f788750b...0N.exe

windows7-x64

10

b8f788750b...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b8f788750bcdec10cdca7daa18c166f0N.exe

  • Size

    324KB

  • Sample

    240727-mvs94syaqd

  • MD5

    b8f788750bcdec10cdca7daa18c166f0

  • SHA1

    5ae561b0a5a5cdfa1aadb20f2355e718670c471c

  • SHA256

    2b26868cdea1e236721c55cf842cce7d4a0aec370543c6a819dda8ccb8570d43

  • SHA512

    7df0a5b99a15d111ef047eb455243d715cb3d987e1bf043ca7f4124cf2d4db558a2be7b5eecc27ee367b3b41d6942261bde9b80419de04d5b97d60a7a79f7d67

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYuA:vHW138/iXWlK885rKlGSekcj66ciU

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      b8f788750bcdec10cdca7daa18c166f0N.exe

    • Size

      324KB

    • MD5

      b8f788750bcdec10cdca7daa18c166f0

    • SHA1

      5ae561b0a5a5cdfa1aadb20f2355e718670c471c

    • SHA256

      2b26868cdea1e236721c55cf842cce7d4a0aec370543c6a819dda8ccb8570d43

    • SHA512

      7df0a5b99a15d111ef047eb455243d715cb3d987e1bf043ca7f4124cf2d4db558a2be7b5eecc27ee367b3b41d6942261bde9b80419de04d5b97d60a7a79f7d67

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYuA:vHW138/iXWlK885rKlGSekcj66ciU

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks