urelas | fd63c2da89f16a4a2db0a86f79472a72ffd4330458d12201fa0571dc94a1f28f | Triage

Sharing

General

Target

78743c3f85b3485ec2a49a07529bc760N.exe
Size

370KB
Sample

240801-pss8fa1brj
MD5

78743c3f85b3485ec2a49a07529bc760
SHA1

6efd2968bdbd316657417c708387bcb946ec714b
SHA256

fd63c2da89f16a4a2db0a86f79472a72ffd4330458d12201fa0571dc94a1f28f
SHA512

c7c65c2c921c59810ae754dd575222182900e7c5d88010df99da1ff952f1f5fab6e41ee66d40aca40195f28a79cb6e1c89e8c6132c5b59b73d691b6aa80ceea6
SSDEEP

6144:CuJkl8DV12C28tLN2/FkCO0aHftvCGCBhDOHjTPmXHk62pHj:CzGL2C2aZ2/F1XaveOHjTn

Score

10^/10

urelas discovery trojan

Malware Config

Targets

- Target
  
  78743c3f85b3485ec2a49a07529bc760N.exe
- Size
  
  370KB
- MD5
  
  78743c3f85b3485ec2a49a07529bc760
- SHA1
  
  6efd2968bdbd316657417c708387bcb946ec714b
- SHA256
  
  fd63c2da89f16a4a2db0a86f79472a72ffd4330458d12201fa0571dc94a1f28f
- SHA512
  
  c7c65c2c921c59810ae754dd575222182900e7c5d88010df99da1ff952f1f5fab6e41ee66d40aca40195f28a79cb6e1c89e8c6132c5b59b73d691b6aa80ceea6
- SSDEEP
  
  6144:CuJkl8DV12C28tLN2/FkCO0aHftvCGCBhDOHjTPmXHk62pHj:CzGL2C2aZ2/F1XaveOHjTn
Score

10^/10

urelas discovery trojan
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

urelasdiscoverytrojan

behavioral2