urelas | f63e7aaa3e5f29c1f80265453c271f72fa7da9243a984ed339b968fcdcf28a54 | Triage

Sharing

General

Target

f63e7aaa3e5f29c1f80265453c271f72fa7da9243a984ed339b968fcdcf28a54.exe
Size

60KB
Sample

241122-xjm9tsskgr
MD5

7dd2b583fa469d40bbc317fcc0273742
SHA1

b72c22035fb5d8592bf24dd66e2650c658abe429
SHA256

f63e7aaa3e5f29c1f80265453c271f72fa7da9243a984ed339b968fcdcf28a54
SHA512

b126d233e728ba8fd165946db9167c85bb57cfd9fc69230634a83b956c644b78da433fee79351920612b3b18de18bdccc80a0da81c9bec8fed421837827a665c
SSDEEP

768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxPX:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdU

Score

10^/10

urelas discovery trojan

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

- Target
  
  f63e7aaa3e5f29c1f80265453c271f72fa7da9243a984ed339b968fcdcf28a54.exe
- Size
  
  60KB
- MD5
  
  7dd2b583fa469d40bbc317fcc0273742
- SHA1
  
  b72c22035fb5d8592bf24dd66e2650c658abe429
- SHA256
  
  f63e7aaa3e5f29c1f80265453c271f72fa7da9243a984ed339b968fcdcf28a54
- SHA512
  
  b126d233e728ba8fd165946db9167c85bb57cfd9fc69230634a83b956c644b78da433fee79351920612b3b18de18bdccc80a0da81c9bec8fed421837827a665c
- SSDEEP
  
  768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxPX:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdU
Score

10^/10

urelas discovery trojan
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Urelas family
  urelas
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

urelasdiscoverytrojan

behavioral2

urelasdiscoverytrojan