Extracted

• • Target

    685e31d7a1575a8d0b201dff4ac49fd301b59441c347b2f43678a12de4f7058d

  • Size

    102KB

  • MD5

    7fe58f1d3995cfbc0b1c24a68b0aa63b

  • SHA1

    5487ebe115e3ab177a45ca63e0f60cab799f837e

  • SHA256

    685e31d7a1575a8d0b201dff4ac49fd301b59441c347b2f43678a12de4f7058d

  • SHA512

    47904d161ec377c7620aa3be53a6e90bd631f9657537a66cfc45378fd115ba59ec82682557a776d823f041b5929daf987cfdd4471f3e4379e4997e867c65e097

  • SSDEEP

    1536:OVNSf7hyk+I6412V6PMqAax80XAFSrRd4BH/bdF2x:SSf9yk+U2V63XAFSrRKBHTix

  Score

  10^/10

  urelastrojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Detects executables built or packed with MPress PE compressor

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2