General

  • Target

    55dd77ef23b5a46b79ad15396596131fe5d0d6e4229e1ff8b8a1aabffee6e1a0N

  • Size

    325KB

  • Sample

    241010-pq3dbs1enm

  • MD5

    a75b77ad132d2282d792090780d81500

  • SHA1

    e3dcd74bbe244bfd3753878a36166a0b5ff83542

  • SHA256

    55dd77ef23b5a46b79ad15396596131fe5d0d6e4229e1ff8b8a1aabffee6e1a0

  • SHA512

    c8af41dfd388eaf04ab6a4a8763204a1a63a1a50992b89e58483537aac797343fb040eef2c538b609d13a46b11eca46739b48d61e6f04b632e0147b74c020b47

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XY7:vHW138/iXWlK885rKlGSekcj66ciq

Score
10/10

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      55dd77ef23b5a46b79ad15396596131fe5d0d6e4229e1ff8b8a1aabffee6e1a0N

    • Size

      325KB

    • MD5

      a75b77ad132d2282d792090780d81500

    • SHA1

      e3dcd74bbe244bfd3753878a36166a0b5ff83542

    • SHA256

      55dd77ef23b5a46b79ad15396596131fe5d0d6e4229e1ff8b8a1aabffee6e1a0

    • SHA512

      c8af41dfd388eaf04ab6a4a8763204a1a63a1a50992b89e58483537aac797343fb040eef2c538b609d13a46b11eca46739b48d61e6f04b632e0147b74c020b47

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XY7:vHW138/iXWlK885rKlGSekcj66ciq

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks