Extracted

• • Target

    NEAS.040fbaa0f4caace604bd3526f25998f0.exe

  • Size

    485KB

  • MD5

    040fbaa0f4caace604bd3526f25998f0

  • SHA1

    ea7ccd494152b031c6f3c9f2723076449291e4e0

  • SHA256

    cc92c454f997c0ccb79caa0db1404d4f5440511f7dd8f48890af77c175dd48ed

  • SHA512

    e59c2bc1f9c52075c2ae85f53a085c238eb55a71a5f7465048c9776272d06f1c2dde7949b656d674f2487c003390a59705f4940d98ea69c19ca0b60f98bdd285

  • SSDEEP

    6144:KxBWeMRygxDLbHxlSBxzJb1REBB6q1gBFJV6AvRqsf6YU+FM+3Yn/fCXjQGDq+ts:63MQIDKJPTq+Xxvo0U+d3s/fCX0as

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2