urelas | e461fdaaed8401938adb8467ca20580797b1cad66a846a79c870ff7671eb0174 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e461fdaaed8401938adb8467ca20580797b1cad66a846a79c870ff7671eb0174
Size

388KB
MD5

cb03dd8fc433b6dd1ed4fcafe8d50897
SHA1

15c43eab9b3fe6ccaa53b46c98d39c8de6e7b363
SHA256

e461fdaaed8401938adb8467ca20580797b1cad66a846a79c870ff7671eb0174
SHA512

611cb8de28a9b82e9ae5fb00f766dff21511df7219ea7b272a2d28a30118c913112a974d07788c42d8aef2396ac591a893ff04254e5c410f6b6891849558edf4
SSDEEP

6144:2xBWeMRygxDLbHxlSBxzJMotBB6q1gBFJV6AvRqsf6YU+FM+3Yn/fCXjQGtp1U:G3MQIDKJQq+Xxvo0U+d3s/fCX0P

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e461fdaaed8401938adb8467ca20580797b1cad66a846a79c870ff7671eb0174

Files

e461fdaaed8401938adb8467ca20580797b1cad66a846a79c870ff7671eb0174
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 237KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ