General
-
Target
1426fa71c4361e62b95dd48e571bd9bc9de984823c11ad0023a830eb252c46c6.exe
-
Size
48KB
-
Sample
241123-bxq2zsvjfx
-
MD5
d6bf5d60b44618978503a040a5532224
-
SHA1
d83131212352901df3140ea7c77e808c7bae9e8d
-
SHA256
1426fa71c4361e62b95dd48e571bd9bc9de984823c11ad0023a830eb252c46c6
-
SHA512
2be6ae1afc899dae34cddae9b53fae62993de67ff78dfb7d42c0a48fde3a20e6105ded37e6bcbbf8ae895311a1bbae265b08fef483ae0cb0d8a59b19c40787f9
-
SSDEEP
1536:Op4/PC7Ruz3hRXRASULZ6JKYdbzcm6lMPR9nE:Qt7R8fU6nWs3E
Static task
static1
Behavioral task
behavioral1
Sample
1426fa71c4361e62b95dd48e571bd9bc9de984823c11ad0023a830eb252c46c6.exe
Resource
win7-20241010-en
Malware Config
Extracted
urelas
112.175.88.207
112.175.88.208
Targets
-
-
Target
1426fa71c4361e62b95dd48e571bd9bc9de984823c11ad0023a830eb252c46c6.exe
-
Size
48KB
-
MD5
d6bf5d60b44618978503a040a5532224
-
SHA1
d83131212352901df3140ea7c77e808c7bae9e8d
-
SHA256
1426fa71c4361e62b95dd48e571bd9bc9de984823c11ad0023a830eb252c46c6
-
SHA512
2be6ae1afc899dae34cddae9b53fae62993de67ff78dfb7d42c0a48fde3a20e6105ded37e6bcbbf8ae895311a1bbae265b08fef483ae0cb0d8a59b19c40787f9
-
SSDEEP
1536:Op4/PC7Ruz3hRXRASULZ6JKYdbzcm6lMPR9nE:Qt7R8fU6nWs3E
-
Urelas family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-