General

  • Target

    33e20f7d792c65ca0dc04f207d350fa255ef3f66d06bcafb6148469f491d133c.exe

  • Size

    60KB

  • Sample

    241122-ma78jayncs

  • MD5

    1c10c8d7135d7e25c5cfadbe78fb1481

  • SHA1

    4527a1b89f3283d10079807aec4d51c937aa638f

  • SHA256

    33e20f7d792c65ca0dc04f207d350fa255ef3f66d06bcafb6148469f491d133c

  • SHA512

    95ae6fe3bad2352216db55144b658017d784fa331acb36a81abe8603f7c1023237dbc017f0dcd406d126a9329fdc9cff0824af7233a25caa3d40ea8d4de7fa6d

  • SSDEEP

    768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxP0:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdaI

Score
10/10

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

    • Target

      33e20f7d792c65ca0dc04f207d350fa255ef3f66d06bcafb6148469f491d133c.exe

    • Size

      60KB

    • MD5

      1c10c8d7135d7e25c5cfadbe78fb1481

    • SHA1

      4527a1b89f3283d10079807aec4d51c937aa638f

    • SHA256

      33e20f7d792c65ca0dc04f207d350fa255ef3f66d06bcafb6148469f491d133c

    • SHA512

      95ae6fe3bad2352216db55144b658017d784fa331acb36a81abe8603f7c1023237dbc017f0dcd406d126a9329fdc9cff0824af7233a25caa3d40ea8d4de7fa6d

    • SSDEEP

      768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxP0:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdaI

    Score
    10/10
    • Urelas

      Urelas is a trojan targeting card games.

    • Urelas family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks