Overview

overview

10

Static

static

10

2024-11-23...ot.exe

windows7-x64

10

2024-11-23...ot.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-11-23_bc3c88404d4409b597b534093153f9c9_magniber_qakbot

  • Size

    4.7MB

  • Sample

    241123-yp4pfatkgs

  • MD5

    bc3c88404d4409b597b534093153f9c9

  • SHA1

    7c7d487d5c749e8d9d906e8a01b4b8092f457991

  • SHA256

    7b7861b8fd660d916ceaab223f147b8fc7a391d36b53df6edf3133ba2f7a6d61

  • SHA512

    a0b5e5d3fd4ec2a0c95ec3934993155c597fef26ee07d49d15f3e8ae0ad6c4cc409c551bfc20f5e2bae738033d889a39836f23a748c1b57d45fc1bbd44ac7be5

  • SSDEEP

    49152:a2V7djp+oE2ZjHoZB6EZ88JUUXIEABMRviTURcV:a2V7NpW6Y6joUh

Score
10/10
urelasdiscoverytrojan

Malware Config

Extracted

Family

urelas

C2

121.88.5.183

218.54.30.235

121.88.5.181

112.223.217.101

Targets

    • Target

      2024-11-23_bc3c88404d4409b597b534093153f9c9_magniber_qakbot

    • Size

      4.7MB

    • MD5

      bc3c88404d4409b597b534093153f9c9

    • SHA1

      7c7d487d5c749e8d9d906e8a01b4b8092f457991

    • SHA256

      7b7861b8fd660d916ceaab223f147b8fc7a391d36b53df6edf3133ba2f7a6d61

    • SHA512

      a0b5e5d3fd4ec2a0c95ec3934993155c597fef26ee07d49d15f3e8ae0ad6c4cc409c551bfc20f5e2bae738033d889a39836f23a748c1b57d45fc1bbd44ac7be5

    • SSDEEP

      49152:a2V7djp+oE2ZjHoZB6EZ88JUUXIEABMRviTURcV:a2V7NpW6Y6joUh

    Score
    10/10
    urelasdiscoverytrojan

    • Urelas

      Urelas is a trojan targeting card games.

      trojanurelas

    • Urelas family

      urelas

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks