General

  • Target

    27ba7417503c37c14e0ab3cc7e889fd15c01232af52c0cf56285ee5a80ad5328

  • Size

    74KB

  • Sample

    241116-p4ybja1jbm

  • MD5

    82a1917db812092fd2744a4c30ab184a

  • SHA1

    f57ff3cbdf203065af25e9e5b2bd8d7fa3b18551

  • SHA256

    27ba7417503c37c14e0ab3cc7e889fd15c01232af52c0cf56285ee5a80ad5328

  • SHA512

    e36c615c441b981c2f9e1773349e7a05ae8bf5aa2c8208ed60b44ddff3f9da59ec099f81de1a688ba6bf2746a71d144af25043da97980bc7658aaeb2c85b77b2

  • SSDEEP

    1536:+Uk8RgDXz7Kx8zzgmTlvtKrNCpbXmsz4tHIp:Tk8yn7KdmTINQXzz46

Score
10/10

Malware Config

Extracted

Family

urelas

C2

112.175.88.207

112.175.88.208

Targets

    • Target

      27ba7417503c37c14e0ab3cc7e889fd15c01232af52c0cf56285ee5a80ad5328

    • Size

      74KB

    • MD5

      82a1917db812092fd2744a4c30ab184a

    • SHA1

      f57ff3cbdf203065af25e9e5b2bd8d7fa3b18551

    • SHA256

      27ba7417503c37c14e0ab3cc7e889fd15c01232af52c0cf56285ee5a80ad5328

    • SHA512

      e36c615c441b981c2f9e1773349e7a05ae8bf5aa2c8208ed60b44ddff3f9da59ec099f81de1a688ba6bf2746a71d144af25043da97980bc7658aaeb2c85b77b2

    • SSDEEP

      1536:+Uk8RgDXz7Kx8zzgmTlvtKrNCpbXmsz4tHIp:Tk8yn7KdmTINQXzz46

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Urelas family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks