Overview

overview

10

Static

static

3

fcc5d6a338...0N.exe

windows7-x64

10

fcc5d6a338...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fcc5d6a338d280b4ab1a7551749eec10N.exe

  • Size

    323KB

  • Sample

    240903-mhgqjsvgqe

  • MD5

    fcc5d6a338d280b4ab1a7551749eec10

  • SHA1

    bd2468cbaab197ed984de895b26aab04643255a8

  • SHA256

    7347df3dabb4d3024d32142c854bc53bf3a5220f69fe34d8bfaceefdbd191ff6

  • SHA512

    46e4cf60023a6d6b018ea93c882c237a4c15422d4876a563fc478d1be4b920a05be33c317f24cf49daaccdcb03a88ecef5e41e8ad7720b2c2dbcac82a69e9ae0

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYA:vHW138/iXWlK885rKlGSekcj66ciR

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      fcc5d6a338d280b4ab1a7551749eec10N.exe

    • Size

      323KB

    • MD5

      fcc5d6a338d280b4ab1a7551749eec10

    • SHA1

      bd2468cbaab197ed984de895b26aab04643255a8

    • SHA256

      7347df3dabb4d3024d32142c854bc53bf3a5220f69fe34d8bfaceefdbd191ff6

    • SHA512

      46e4cf60023a6d6b018ea93c882c237a4c15422d4876a563fc478d1be4b920a05be33c317f24cf49daaccdcb03a88ecef5e41e8ad7720b2c2dbcac82a69e9ae0

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYA:vHW138/iXWlK885rKlGSekcj66ciR

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks