Overview

overview

10

Static

static

3

d34f2f15fa...9N.exe

windows7-x64

10

d34f2f15fa...9N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d34f2f15fa4539a4a99ee112220353f63de091aca7696718a3439cc3bbbeb209N

  • Size

    328KB

  • Sample

    241108-wv6pwazjgk

  • MD5

    03c3f8263a275d4458bc87de3332a030

  • SHA1

    1b08deca65a007f9973631e14b578f3946fcba72

  • SHA256

    d34f2f15fa4539a4a99ee112220353f63de091aca7696718a3439cc3bbbeb209

  • SHA512

    1174e0a911409d9eaccb50c5f110f6ece415206704cf8e1a944c64d0d905351120c2d59c738883e216e9a001f73321108725bb448cd365074cff8266aedfb1fc

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYMOo:vHW138/iXWlK885rKlGSekcj66ciX

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      d34f2f15fa4539a4a99ee112220353f63de091aca7696718a3439cc3bbbeb209N

    • Size

      328KB

    • MD5

      03c3f8263a275d4458bc87de3332a030

    • SHA1

      1b08deca65a007f9973631e14b578f3946fcba72

    • SHA256

      d34f2f15fa4539a4a99ee112220353f63de091aca7696718a3439cc3bbbeb209

    • SHA512

      1174e0a911409d9eaccb50c5f110f6ece415206704cf8e1a944c64d0d905351120c2d59c738883e216e9a001f73321108725bb448cd365074cff8266aedfb1fc

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYMOo:vHW138/iXWlK885rKlGSekcj66ciX

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Urelas family

      urelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks