urelas | cd156c8235e78acf0dded59b2a4051549ff34c3ec857bad47a3f9a2af0cb0a5b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd156c8235e78acf0dded59b2a4051549ff34c3ec857bad47a3f9a2af0cb0a5b
Size

158KB
MD5

089faa2cb4fb13f41e3731ef818b9edd
SHA1

b2301e4269548cc7d857ce35819a698bf1a0a000
SHA256

cd156c8235e78acf0dded59b2a4051549ff34c3ec857bad47a3f9a2af0cb0a5b
SHA512

8d8f53287f14fd3f439a516973cff2fb67f17f130127eb366ac6ee26a83000f5acae497f440edba9f309e92a250cd81cd500930aa21cef83164ec20775372bea
SSDEEP

1536:8iVlUPlfHeARjOsOAe2zBN7lE4U1sgzAom8JsuPIclSXsWjcdd6YGJYwYcbY:nVlUPZRxfxE9Vs5cfdd6YGGIc

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cd156c8235e78acf0dded59b2a4051549ff34c3ec857bad47a3f9a2af0cb0a5b

Files

cd156c8235e78acf0dded59b2a4051549ff34c3ec857bad47a3f9a2af0cb0a5b
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ