Overview

overview

10

Static

static

10

2dc9dbcf65...cN.exe

windows7-x64

10

2dc9dbcf65...cN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2dc9dbcf659cff6762f59cf865553c7f6fbaaf3f10269f7a26e34ff46ff2f8bcN

  • Size

    124KB

  • Sample

    241102-j874msyrhs

  • MD5

    df24c49c66626e354e439fffd1cf4260

  • SHA1

    ebc440e19c1437af7067ede2fcd45033ec0f9ddc

  • SHA256

    2dc9dbcf659cff6762f59cf865553c7f6fbaaf3f10269f7a26e34ff46ff2f8bc

  • SHA512

    9a76996e084fa2a3654673d2f2dc113eed2bfb64ea292e119c0e59af7c5abcbb2c9646399f55e05f0bf8d409f80d796856737d4ce9dbe539fe01b3ecb6910aa1

  • SSDEEP

    1536:Ko6JdvxttIBcXISDPV2Mhg3GkFceersWjcd06UsfqW2vxq8un1zYL:iHC6D92O8n7eU06UsfUpq/W

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

112.175.88.209

112.175.88.207

112.175.88.208

Targets

    • Target

      2dc9dbcf659cff6762f59cf865553c7f6fbaaf3f10269f7a26e34ff46ff2f8bcN

    • Size

      124KB

    • MD5

      df24c49c66626e354e439fffd1cf4260

    • SHA1

      ebc440e19c1437af7067ede2fcd45033ec0f9ddc

    • SHA256

      2dc9dbcf659cff6762f59cf865553c7f6fbaaf3f10269f7a26e34ff46ff2f8bc

    • SHA512

      9a76996e084fa2a3654673d2f2dc113eed2bfb64ea292e119c0e59af7c5abcbb2c9646399f55e05f0bf8d409f80d796856737d4ce9dbe539fe01b3ecb6910aa1

    • SSDEEP

      1536:Ko6JdvxttIBcXISDPV2Mhg3GkFceersWjcd06UsfqW2vxq8un1zYL:iHC6D92O8n7eU06UsfUpq/W

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Urelas family

      urelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks