Overview

overview

10

Static

static

3

51e2e05624...4N.exe

windows7-x64

10

51e2e05624...4N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    51e2e0562467ed45d951ae561eb5b189273cc13b37c20b1a2b941ea28b61f804N

  • Size

    334KB

  • Sample

    241110-wtkq1svpem

  • MD5

    7a181789d0257b40a159ab4696ebdd80

  • SHA1

    5ba1408568657c069093a923ec223f05c1465789

  • SHA256

    51e2e0562467ed45d951ae561eb5b189273cc13b37c20b1a2b941ea28b61f804

  • SHA512

    0873dbad88af0dfdceb5161ec1eaacbbfaf690676cc1743b037a2fa80fad0a6f07c51df8df54ff7b66666fafaec6edb890c40464c353ac49a4a2ed66f51f849f

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYPT:vHW138/iXWlK885rKlGSekcj66ciK

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      51e2e0562467ed45d951ae561eb5b189273cc13b37c20b1a2b941ea28b61f804N

    • Size

      334KB

    • MD5

      7a181789d0257b40a159ab4696ebdd80

    • SHA1

      5ba1408568657c069093a923ec223f05c1465789

    • SHA256

      51e2e0562467ed45d951ae561eb5b189273cc13b37c20b1a2b941ea28b61f804

    • SHA512

      0873dbad88af0dfdceb5161ec1eaacbbfaf690676cc1743b037a2fa80fad0a6f07c51df8df54ff7b66666fafaec6edb890c40464c353ac49a4a2ed66f51f849f

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYPT:vHW138/iXWlK885rKlGSekcj66ciK

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Urelas family

      urelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks