Overview

overview

10

Static

static

3

2edb821683...0N.exe

windows7-x64

10

2edb821683...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2edb82168379b1a7228928a87236b140N.exe

  • Size

    63KB

  • Sample

    240806-3yy8javbqr

  • MD5

    2edb82168379b1a7228928a87236b140

  • SHA1

    6e7ba7b21d90285a75acfe56d39a7a251d812763

  • SHA256

    d7b0ce3f71458c33857a02fd7ad9c751810a40bd1173c642c37b5c9a1462bc78

  • SHA512

    7d3f0368e34e13518198bb33cbb2bc3fb812c82bae097664c731e323aef3c9342e1c37a7e7922fb312ccaa7d46a44391d215241cf21e2a1586873a3f700713c5

  • SSDEEP

    1536:6bQx5oPsr2vFxDPhAvzgAQzFZ77MzeTmY:6bQRSHpAvzyf7MzeTx

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

    • Target

      2edb82168379b1a7228928a87236b140N.exe

    • Size

      63KB

    • MD5

      2edb82168379b1a7228928a87236b140

    • SHA1

      6e7ba7b21d90285a75acfe56d39a7a251d812763

    • SHA256

      d7b0ce3f71458c33857a02fd7ad9c751810a40bd1173c642c37b5c9a1462bc78

    • SHA512

      7d3f0368e34e13518198bb33cbb2bc3fb812c82bae097664c731e323aef3c9342e1c37a7e7922fb312ccaa7d46a44391d215241cf21e2a1586873a3f700713c5

    • SSDEEP

      1536:6bQx5oPsr2vFxDPhAvzgAQzFZ77MzeTmY:6bQRSHpAvzyf7MzeTx

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks