Extracted

• • Target

    0f85f187cb51b4b58c900a4d3a7f4326

  • Size

    404KB

  • MD5

    0f85f187cb51b4b58c900a4d3a7f4326

  • SHA1

    41bea34a956d3442e5b68a9f06089a6d518d948b

  • SHA256

    4f17482d94907eac89accce9f0f6651c9229c9ef0572e1c22286dc93575458d4

  • SHA512

    13ddcc2ded8bdad36af3869386a381642dbac85ad06d34d0fae46ca92fd32b5da41fd6c4094bd46557216f6fbb65f9ce48af6f227685b7354a8e346b2f978196

  • SSDEEP

    6144:GzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInODgM:oU7M5ijWh0XOW4sEfeO8M

  Score

  10^/10

  urelasaspackv2trojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2