urelas | 7dee84ac8615832c87555dfd4ce90a4eb6503d4c30f8824bb312c012815b9103 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7dee84ac8615832c87555dfd4ce90a4eb6503d4c30f8824bb312c012815b9103
Size

158KB
MD5

ab4d1b8c7496c38f515f1b6a8545eefc
SHA1

1d8d82d732671732597c97894218ce6c26adbf3e
SHA256

7dee84ac8615832c87555dfd4ce90a4eb6503d4c30f8824bb312c012815b9103
SHA512

6d11a81c44f3e607aec28326db34dbbd6d605ad5edd384684c0397da4fc97532b231f2409e27a695b864eb3c5f8a76ccf85b99f942b852f31bcb1733c370fd9d
SSDEEP

1536:8iVlUPlfHeARjOsOAe2zBN7lE4U1sgzAom8JsuPIclSXsWjcdd6YGJYwYcP:nVlUPZRxfxE9Vs5cfdd6YGGIP

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7dee84ac8615832c87555dfd4ce90a4eb6503d4c30f8824bb312c012815b9103

Files

7dee84ac8615832c87555dfd4ce90a4eb6503d4c30f8824bb312c012815b9103
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ