Overview

overview

10

Static

static

3

31a7a6a762...ae.exe

windows7-x64

10

31a7a6a762...ae.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31a7a6a76277be46d2cf9fca4d7bc90fefeb41eadab5486d1599a3044df631ae

  • Size

    330KB

  • Sample

    241028-1dw7bsxgka

  • MD5

    574b21767e108012461c55b68fa4859a

  • SHA1

    87bc2c0d8a0bc4a557eab7c655af9a25cdd3f509

  • SHA256

    31a7a6a76277be46d2cf9fca4d7bc90fefeb41eadab5486d1599a3044df631ae

  • SHA512

    0d56f0ec36795efdff4dbaf7bddbfc3770a130f9c96f25738d5be140b7bb25020d3b9eb62d3e2f4355bc5447fbbfda50ed6f53497892bccba75408cd04947fee

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYV7:vHW138/iXWlK885rKlGSekcj66ciE7

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      31a7a6a76277be46d2cf9fca4d7bc90fefeb41eadab5486d1599a3044df631ae

    • Size

      330KB

    • MD5

      574b21767e108012461c55b68fa4859a

    • SHA1

      87bc2c0d8a0bc4a557eab7c655af9a25cdd3f509

    • SHA256

      31a7a6a76277be46d2cf9fca4d7bc90fefeb41eadab5486d1599a3044df631ae

    • SHA512

      0d56f0ec36795efdff4dbaf7bddbfc3770a130f9c96f25738d5be140b7bb25020d3b9eb62d3e2f4355bc5447fbbfda50ed6f53497892bccba75408cd04947fee

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYV7:vHW138/iXWlK885rKlGSekcj66ciE7

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Urelas family

      urelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks