urelas | d695c3effa1b1e6ca84f8f6b6353fa3783d7098170b24423261d3bdacf20ee40 | Triage

Sharing

General

Target

d695c3effa1b1e6ca84f8f6b6353fa3783d7098170b24423261d3bdacf20ee40.exe
Size

59KB
Sample

241123-pcb9zs1kcr
MD5

fca7aaf481a36d68c5f44524aad67908
SHA1

280e3b2253bcede967a9b744d229b8dfea2ef54c
SHA256

d695c3effa1b1e6ca84f8f6b6353fa3783d7098170b24423261d3bdacf20ee40
SHA512

5368e38d6f4d7090ac2bf12bde3d6657c7026463f85ad9559a1a25f8af81b344269b5bba30170184b04d5bbadcf787afa403b1e342f5ac960ac1ae1e9b55eafb
SSDEEP

768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxPt:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdc

Score

10^/10

urelas discovery trojan

Malware Config

Extracted

Family

urelas

C2

218.54.47.76

218.54.47.77

218.54.47.74

Targets

- Target
  
  d695c3effa1b1e6ca84f8f6b6353fa3783d7098170b24423261d3bdacf20ee40.exe
- Size
  
  59KB
- MD5
  
  fca7aaf481a36d68c5f44524aad67908
- SHA1
  
  280e3b2253bcede967a9b744d229b8dfea2ef54c
- SHA256
  
  d695c3effa1b1e6ca84f8f6b6353fa3783d7098170b24423261d3bdacf20ee40
- SHA512
  
  5368e38d6f4d7090ac2bf12bde3d6657c7026463f85ad9559a1a25f8af81b344269b5bba30170184b04d5bbadcf787afa403b1e342f5ac960ac1ae1e9b55eafb
- SSDEEP
  
  768:n5mhew0GpSyMe6hwUkdwJzh+qciaQRENEzxZbARtR06g2wqp4YPeznellmqGwxPt:nK0GjMeQG3iaQREuVZ6ro29p4YxbKdc
Score

10^/10

urelas discovery trojan
- Urelas
  Urelas is a trojan targeting card games.
  trojan urelas
- Urelas family
  urelas
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

urelasdiscoverytrojan

behavioral2

urelasdiscoverytrojan