urelas | 5744f66a2ddb7516a0b84ac9b24358e6_JC[.]exe | Triage

Sharing

General

Target

5744f66a2ddb7516a0b84ac9b24358e6_JC.exe
Size

263KB
MD5

5744f66a2ddb7516a0b84ac9b24358e6
SHA1

2b8ba7a094d6fa1ee10c3ae0bd9306060de01f93
SHA256

bd54ba629105c4b1c92b30896bf197571e0b2010a1f8fb6a90b505227460ddc9
SHA512

aedb9896c97de3a7560f502c3ba196069f58b9a7aebb7dc931e0c8a8913085f429cce57f2ade6636c11386c0194b8163e6744eab1b4b6fdd1fa852bbb93206af
SSDEEP

6144:B5ibQcmlVD+BgotLvTtehd1wLIE92FJ1wZyZUBiTc:BUq+BgotLvTtehd1wd92FJ1Hc

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5744f66a2ddb7516a0b84ac9b24358e6_JC.exe

Files

5744f66a2ddb7516a0b84ac9b24358e6_JC.exe
.exe windows:5 windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VSDHGWHD
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ