urelas | 41e3879e0fb3b9b854cff211dd6c4370_exe32[.]exe | Triage

Sharing

General

Target

41e3879e0fb3b9b854cff211dd6c4370_exe32.exe
Size

368KB
MD5

41e3879e0fb3b9b854cff211dd6c4370
SHA1

bb4d179f6f8d1b98b712622035941945c987d88c
SHA256

142db114475b29b5f7e4da0d19a7d01ad76acb3628c1210f88880f7c7827a394
SHA512

2e7d5fc181a29e6f9502653554622bc42e053f0948ce2ec5d6d8c3f8cc6ffa7b43b0dd8df48271c96372b26fef111da41f197e8c3b5a019a83221fe7b9d94446
SSDEEP

6144:5/bE5G5KiR0JlzEsnGb/6VOpLc91WlvhDSNZ:F0G5o+GGraOpUWlp

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41e3879e0fb3b9b854cff211dd6c4370_exe32.exe

Files

41e3879e0fb3b9b854cff211dd6c4370_exe32.exe
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 110KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

JHDFRWG
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE