Extracted

• • Target

    39fc2f065fcd40fe8eaa9c2111a05f87

  • Size

    465KB

  • MD5

    39fc2f065fcd40fe8eaa9c2111a05f87

  • SHA1

    628101daca9506b2f5863b2962671c462158b82b

  • SHA256

    be4b9fca1e031f9d8314c94515bba09a45c11894738c9cdd223e17d3a91c3dd8

  • SHA512

    9cf10ed0ee1be9deffea5667543baef95e60788a2463e3859c6ad07eb530cab782423d674f2aed272f83d8fe9afb9d74df8254dfe43c846e70ae14158cd6c309

  • SSDEEP

    12288:m6twjLHj/8/GcHUIdPPzEmvTnabAh0ZnAr1UFW:m6tQCG0UUPzEkTn4AC1+P

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2