urelas | 6a56e7d5e52d0bae323865a15dcbbd8572dd9321dbdad9fea4ad1a0dcaf06d31 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a56e7d5e52d0bae323865a15dcbbd8572dd9321dbdad9fea4ad1a0dcaf06d31
Size

124KB
MD5

5b268da4736d78a1d8c4d7a9978356f9
SHA1

4f08043d3d9e4eb4b6f67d26cf21767b7b2f2b40
SHA256

6a56e7d5e52d0bae323865a15dcbbd8572dd9321dbdad9fea4ad1a0dcaf06d31
SHA512

ab79c5f7ab9085dd9f86bf47a9f7fae0c2e09b858db33f13c9227fc6635cddea18587b927c9a25e1130c70b2b55e4d9913bac823ca922ade64db0f30d2ffa771
SSDEEP

1536:DVih9jjOABjWAqUffzNoBcTwE/sNW4Am8NsuPz4cnSXsWjcdy6YAiQ45sIse:DVSRBPCoLY5RIzNdy6YO45H

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a56e7d5e52d0bae323865a15dcbbd8572dd9321dbdad9fea4ad1a0dcaf06d31

Files

6a56e7d5e52d0bae323865a15dcbbd8572dd9321dbdad9fea4ad1a0dcaf06d31
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IOSDWD
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ