Extracted

• • Target

    5c6d706a3d4c716f8d7bba7a0fb19d53_JC.exe

  • Size

    449KB

  • MD5

    5c6d706a3d4c716f8d7bba7a0fb19d53

  • SHA1

    f61e1178cdbd17868799e1bd8e7826d32826c6b3

  • SHA256

    8532d8ea2bf8c323c88ab526a1e4d6239e29bf8bef29307250b6c04b1d0bf175

  • SHA512

    8808bd302f9c730059cb4a799e7fec87abcbefafcbf3843813bfa3a6c4ed47a3ee6d22dfdc50f5ca6b729258e66d30808910d4eb14b33c71c590e68c7bbef01b

  • SSDEEP

    6144:tzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInOC3l1bio:hU7M5ijWh0XOW4sEfeOW9io

  Score

  10^/10

  urelasaspackv2trojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2