Overview

overview

10

Static

static

3

010f129bfe...1N.exe

windows7-x64

10

010f129bfe...1N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    010f129bfed164ec03c59568036c577b10a67a316d26d10ad2a0ce3af3bcceb1N.exe

  • Size

    334KB

  • Sample

    241117-hrxqxatjhw

  • MD5

    d5362e12d9741ea3f79d6c9cd549c140

  • SHA1

    c3f044b5004fdbfab46c97c9a5eafbb82b50440c

  • SHA256

    010f129bfed164ec03c59568036c577b10a67a316d26d10ad2a0ce3af3bcceb1

  • SHA512

    f64f5bcbc6e465ce3c92057048b0f7d9f9c868dff461f9118e8b94c3bd16b903ee0ba0477652bd23dacdaaa47092c1e5d145cf8b0829501ff4cae1ea6f3030cc

  • SSDEEP

    6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYi:vHW138/iXWlK885rKlGSekcj66ciD

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

218.54.31.226

218.54.31.165

218.54.31.166

Targets

    • Target

      010f129bfed164ec03c59568036c577b10a67a316d26d10ad2a0ce3af3bcceb1N.exe

    • Size

      334KB

    • MD5

      d5362e12d9741ea3f79d6c9cd549c140

    • SHA1

      c3f044b5004fdbfab46c97c9a5eafbb82b50440c

    • SHA256

      010f129bfed164ec03c59568036c577b10a67a316d26d10ad2a0ce3af3bcceb1

    • SHA512

      f64f5bcbc6e465ce3c92057048b0f7d9f9c868dff461f9118e8b94c3bd16b903ee0ba0477652bd23dacdaaa47092c1e5d145cf8b0829501ff4cae1ea6f3030cc

    • SSDEEP

      6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYi:vHW138/iXWlK885rKlGSekcj66ciD

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Urelas family

      urelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks