Extracted

• • Target

    8f815b8fc4639cd95b1ea2a16a543706

  • Size

    579KB

  • MD5

    8f815b8fc4639cd95b1ea2a16a543706

  • SHA1

    bc8a929fe88dbc7617772348acc61fc7e2e545c0

  • SHA256

    41d412c9617f1e7104f91535c845ebc4a287e1218e72b1ada06ccd879cae6d33

  • SHA512

    d088a124349e8406e40c782d4f0b99ddf10edf47a4242be8cecfc9394b1ed9ca8c42065dddff6523802dcf21d33e9a0440721289249266d8c8260e2474deb189

  • SSDEEP

    6144:eajY1oC+/U8Vjlx4kk9HKda4L383j8hpdoSQbQFsrF1W/h84IrV7mMpH8zQW4jQj:uOlx4kk9HKda4Y38oSiQi4kVdcQzje

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2