General
-
Target
348ca2b9fdf2e1d45e0aaa801d10ec52ca1474cf33a85596ec95e93ccb8ebd94.exe
-
Size
60KB
-
Sample
241122-ymd11atldr
-
MD5
a6d15dfbe60459e89608152992c42990
-
SHA1
41590109cb824e24b15379ec9d2a2e29bad4a5a0
-
SHA256
348ca2b9fdf2e1d45e0aaa801d10ec52ca1474cf33a85596ec95e93ccb8ebd94
-
SHA512
37f2ee32de5ac16e4023e4e19cc949c25fe6268cf4fe1f3171ee1959cdaf6c95646df9ae539b60ef25eb2164aad5721bd7845ea0407b8912029f6f34f2d6a2c9
-
SSDEEP
768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxPH:nK0GjMeQG3iaQREuVZ6ro29p4YxbKd9s
Static task
static1
Behavioral task
behavioral1
Sample
348ca2b9fdf2e1d45e0aaa801d10ec52ca1474cf33a85596ec95e93ccb8ebd94.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
218.54.47.76
218.54.47.77
218.54.47.74
Targets
-
-
Target
348ca2b9fdf2e1d45e0aaa801d10ec52ca1474cf33a85596ec95e93ccb8ebd94.exe
-
Size
60KB
-
MD5
a6d15dfbe60459e89608152992c42990
-
SHA1
41590109cb824e24b15379ec9d2a2e29bad4a5a0
-
SHA256
348ca2b9fdf2e1d45e0aaa801d10ec52ca1474cf33a85596ec95e93ccb8ebd94
-
SHA512
37f2ee32de5ac16e4023e4e19cc949c25fe6268cf4fe1f3171ee1959cdaf6c95646df9ae539b60ef25eb2164aad5721bd7845ea0407b8912029f6f34f2d6a2c9
-
SSDEEP
768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxPH:nK0GjMeQG3iaQREuVZ6ro29p4YxbKd9s
-
Urelas family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-