Overview

overview

10

Static

static

3

60cb8f57ba...ae.exe

windows7-x64

10

60cb8f57ba...ae.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    60cb8f57ba0f009a441e09db7f876af018d6eb7ebded61d09799fe7fc71585ae

  • Size

    327KB

  • Sample

    241117-gccazs1rdy

  • MD5

    211974cb67a1ada8a164b7bd3529b0fc

  • SHA1

    c2ce238eb3905d86339cc05ba995c28ee027de87

  • SHA256

    60cb8f57ba0f009a441e09db7f876af018d6eb7ebded61d09799fe7fc71585ae

  • SHA512

    ad75fb7d6d998dd0b535c02e3067e0e21289a7c8e328c27d8329e2c31e3fc8739a8a27ee0e9cc2139da9a1d1115c668de77fcfff5f6988084f503fb7187b0271

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYn:vHW138/iXWlK885rKlGSekcj66ciu

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      60cb8f57ba0f009a441e09db7f876af018d6eb7ebded61d09799fe7fc71585ae

    • Size

      327KB

    • MD5

      211974cb67a1ada8a164b7bd3529b0fc

    • SHA1

      c2ce238eb3905d86339cc05ba995c28ee027de87

    • SHA256

      60cb8f57ba0f009a441e09db7f876af018d6eb7ebded61d09799fe7fc71585ae

    • SHA512

      ad75fb7d6d998dd0b535c02e3067e0e21289a7c8e328c27d8329e2c31e3fc8739a8a27ee0e9cc2139da9a1d1115c668de77fcfff5f6988084f503fb7187b0271

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYn:vHW138/iXWlK885rKlGSekcj66ciu

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Urelas family

      urelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks