General

  • Target

    7e1ccf09a845e970a03225fd762d070d4b4355140b213b868ca570b36d3e615d

  • Size

    366KB

  • Sample

    240802-3lmc7svfmq

  • MD5

    c743f543a26a8b8121cd1eb7ef8dba27

  • SHA1

    358f70b19e4b35c8d2e697a49ec8abb489716f59

  • SHA256

    7e1ccf09a845e970a03225fd762d070d4b4355140b213b868ca570b36d3e615d

  • SHA512

    81135db0ebf7f851baa479b29d0991674d7719f8cad282879f272049b5fa51465629a4268ee3dc4c1d73d435fdea633dace8e30e4fed44525e75efe362bebf73

  • SSDEEP

    6144:OuJkl8DV12C28tLN2/FkCOfHVm0fMaHftvCGCBhDOHjTPmXHk62pw:OzGL2C2aZ2/F1WHHUaveOHjTE

Score
10/10

Malware Config

Extracted

Family

urelas

C2

1.234.83.146

133.242.129.155

218.54.31.165

218.54.31.226

Targets

    • Target

      7e1ccf09a845e970a03225fd762d070d4b4355140b213b868ca570b36d3e615d

    • Size

      366KB

    • MD5

      c743f543a26a8b8121cd1eb7ef8dba27

    • SHA1

      358f70b19e4b35c8d2e697a49ec8abb489716f59

    • SHA256

      7e1ccf09a845e970a03225fd762d070d4b4355140b213b868ca570b36d3e615d

    • SHA512

      81135db0ebf7f851baa479b29d0991674d7719f8cad282879f272049b5fa51465629a4268ee3dc4c1d73d435fdea633dace8e30e4fed44525e75efe362bebf73

    • SSDEEP

      6144:OuJkl8DV12C28tLN2/FkCOfHVm0fMaHftvCGCBhDOHjTPmXHk62pw:OzGL2C2aZ2/F1WHHUaveOHjTE

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks