General

  • Target

    834a3acba6dd63ecc433f0a1e529ae92fa298472d74ae74777343041d748c508N

  • Size

    457KB

  • Sample

    241011-jey9msxflk

  • MD5

    6f93ff26b5401d4858513babd740e910

  • SHA1

    db023dc99f985648f1261e24a802f591a4a021cd

  • SHA256

    834a3acba6dd63ecc433f0a1e529ae92fa298472d74ae74777343041d748c508

  • SHA512

    f6fad8bc634f0fda589b18ace7df2ca1a515ddb290300ff06de2251489fbcec78d44bf2ebe9912c6e93d33e2d5da14d6be83be8d39ee90bced2f10f8e7807bc9

  • SSDEEP

    6144:PEK25f5ySIcWLsxIIW4DYM6SB6v+qLnAzYmhwrxcvkzmSOpzM:PMpASIcWYx2U6hAJQnt

Score
10/10

Malware Config

Extracted

Family

urelas

C2

218.54.31.165

218.54.31.226

Targets

    • Target

      834a3acba6dd63ecc433f0a1e529ae92fa298472d74ae74777343041d748c508N

    • Size

      457KB

    • MD5

      6f93ff26b5401d4858513babd740e910

    • SHA1

      db023dc99f985648f1261e24a802f591a4a021cd

    • SHA256

      834a3acba6dd63ecc433f0a1e529ae92fa298472d74ae74777343041d748c508

    • SHA512

      f6fad8bc634f0fda589b18ace7df2ca1a515ddb290300ff06de2251489fbcec78d44bf2ebe9912c6e93d33e2d5da14d6be83be8d39ee90bced2f10f8e7807bc9

    • SSDEEP

      6144:PEK25f5ySIcWLsxIIW4DYM6SB6v+qLnAzYmhwrxcvkzmSOpzM:PMpASIcWYx2U6hAJQnt

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks