Extracted

• • Target

    b59748f984aea7069b73c1f854df52be.bin

  • Size

    488KB

  • MD5

    b59748f984aea7069b73c1f854df52be

  • SHA1

    beee66a85cc9db1c9a627ff99f74466f8f9b12e2

  • SHA256

    2fb6c8260c621bd6a84c7a7d07b677a68d92f324e653161166e524c882cdcc70

  • SHA512

    3143a1603f566293be91cf82353e8be910fd4a9d7b366ec45fa4674b8da52c225c921774653a10bb557ccb0e11eea45a57ced49cd26f002efe6e11b77a71fbf9

  • SSDEEP

    6144:KxBWeMRygxDLbHxlSBxzJb6B6q1gBFJV6AvRqsf6YU+FM+3Yn/fCXjQGDq+8:63MQIDKJxq+Xxvo0U+d3s/fCX0b

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2