Extracted

• • Target

    e500c38ad7172c53181ffd207ffabd6f

  • Size

    327KB

  • MD5

    e500c38ad7172c53181ffd207ffabd6f

  • SHA1

    c25e425ccc46cfddaeada9f4ca24f570df57c2a3

  • SHA256

    5a0c9d65ac8be1bc9730b7e0db692da626214d3cf34c952220e1930996972a4d

  • SHA512

    f98f142598fcc3ce1f4c743f3598836cc2c9c4dd4c2926c90db7b9e187a7436c93475d2e02fb1f87c99762f6316d584fc5117445356d71f76bb0ab1ff5b48ab4

  • SSDEEP

    3072:NdXi+V5Kgxpdxj8gbib20xTyst542t8ZHWBow8+zoB91wDQgJl0x2AEMenKbZisR:Nd7rpL43btmQ58Z27zw39gY2FeZhJ

  Score

  10^/10

  urelasaspackv2trojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2