Extracted

• • Target

    NEAS.edbd5bcb8739ce66b82cc0ecd6c4a7ae_JC.exe

  • Size

    380KB

  • MD5

    edbd5bcb8739ce66b82cc0ecd6c4a7ae

  • SHA1

    222f6220db0451029d6cb6a2976abf84c21669a8

  • SHA256

    d59b3fc9f3902646c6377e7ab4d92e69cf8b5ae7c5639d84784e03a41360545e

  • SHA512

    c55281b5aae072829fae5bb43a466a30c55619105a757e303587c332228116c10da7ffbc92359331706305a727e8294f0dac6d563d3e0a0a00fb3ae2fefb735e

  • SSDEEP

    6144:GKMvNQn2DlydH3L9KyGdZIoH5j9u7Q2N0Idgm3wIypgDo:MV22DlydH3hydZI45P2WUgm37tU

  Score

  10^/10

  urelasaspackv2trojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2