Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

66aa8d3f50...18.exe

windows7-x64

10

66aa8d3f50...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    66aa8d3f50de5fa48dea20fea6db9f56_JaffaCakes118

  • Size

    553KB

  • Sample

    241021-n837xavdrj

  • MD5

    66aa8d3f50de5fa48dea20fea6db9f56

  • SHA1

    fd2e75c20716c165b5eac7219df1c24e26757366

  • SHA256

    fe7c604514c39f076ea66503c2925b6d8927805b522b803c50cbdb5243e0feae

  • SHA512

    61291a0987aa76defd8c5caca36c6d297a67284c75376366e93b7152eff436d4688eccca500197e60c8e009f0c5f3167ecf5cd2e77357443811236199380670e

  • SSDEEP

    12288:++GtVfjTQSaoINAHT1VQ1i3SyQEW85gzlv:+rt4/NArwjs5olv

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

Targets

    • Target

      66aa8d3f50de5fa48dea20fea6db9f56_JaffaCakes118

    • Size

      553KB

    • MD5

      66aa8d3f50de5fa48dea20fea6db9f56

    • SHA1

      fd2e75c20716c165b5eac7219df1c24e26757366

    • SHA256

      fe7c604514c39f076ea66503c2925b6d8927805b522b803c50cbdb5243e0feae

    • SHA512

      61291a0987aa76defd8c5caca36c6d297a67284c75376366e93b7152eff436d4688eccca500197e60c8e009f0c5f3167ecf5cd2e77357443811236199380670e

    • SSDEEP

      12288:++GtVfjTQSaoINAHT1VQ1i3SyQEW85gzlv:+rt4/NArwjs5olv

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks