urelas | 7d8b01e27861c2cca4d683a3934509c01e5390dddb1c49e01379029c84b41614 | Triage

Sharing

General

Target

7d8b01e27861c2cca4d683a3934509c01e5390dddb1c49e01379029c84b41614.exe
Size

463KB
Sample

241121-c28y2ayenr
MD5

e0ada6ad8b630e3a025fa62c846a1346
SHA1

84132766b6ecfd33760c40ff23f9abe286902944
SHA256

7d8b01e27861c2cca4d683a3934509c01e5390dddb1c49e01379029c84b41614
SHA512

b4afe28fcae4fdc29be8aef9c3c73d35e78559cc4117922850c6eea71b506b87ce8b2b518c24497c8d5654227217f21741e04f74022cdcb00062d2765a25425c
SSDEEP

6144:P8Eoe/IebBVMweZGhHdJBV70FVKLbfW2x8VyMsmD6gzOmjpi+pMJQ8uUm9unpms:vDdUGhHdJ370FVKmP0Ml+gzzjp+lsu/

Score

10^/10

urelas discovery trojan

Malware Config

Extracted

Family

urelas

C2

121.88.5.183

218.54.30.235

121.88.5.181

112.223.217.101

Targets

- Target
  
  7d8b01e27861c2cca4d683a3934509c01e5390dddb1c49e01379029c84b41614.exe
- Size
  
  463KB
- MD5
  
  e0ada6ad8b630e3a025fa62c846a1346
- SHA1
  
  84132766b6ecfd33760c40ff23f9abe286902944
- SHA256
  
  7d8b01e27861c2cca4d683a3934509c01e5390dddb1c49e01379029c84b41614
- SHA512
  
  b4afe28fcae4fdc29be8aef9c3c73d35e78559cc4117922850c6eea71b506b87ce8b2b518c24497c8d5654227217f21741e04f74022cdcb00062d2765a25425c
- SSDEEP
  
  6144:P8Eoe/IebBVMweZGhHdJBV70FVKLbfW2x8VyMsmD6gzOmjpi+pMJQ8uUm9unpms:vDdUGhHdJ370FVKmP0Ml+gzzjp+lsu/
Score

10^/10

urelas discovery trojan
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Urelas family
  urelas
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

urelasdiscoverytrojan

behavioral2

urelasdiscoverytrojan