urelas | 6cf8f5e720d47aacb7dcdbd6826f326bbc16e86ff9d3d1127f61f417b0728b22 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6cf8f5e720d47aacb7dcdbd6826f326bbc16e86ff9d3d1127f61f417b0728b22
Size

266KB
MD5

9d69002c2f17fbebad70a6bb09b5b430
SHA1

a18fb652ae19e5bcf6a7068c90f4014d7ccb1a03
SHA256

6cf8f5e720d47aacb7dcdbd6826f326bbc16e86ff9d3d1127f61f417b0728b22
SHA512

39668bf8471726df7fd0b71a633c78514a9cc38dc984b5f92be86389e0edc1e59ab76b9d70e357d33081f5a86410937e0f54ea3aff2e81b88dbcdf124f071ba0
SSDEEP

6144:w5ibQcmlVD+BgotLvTtehd1wLIE92FJ1wZyZTiTUg:wUq+BgotLvTtehd1wd92FJ1a9

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6cf8f5e720d47aacb7dcdbd6826f326bbc16e86ff9d3d1127f61f417b0728b22

Files

6cf8f5e720d47aacb7dcdbd6826f326bbc16e86ff9d3d1127f61f417b0728b22
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VSDHGWHD
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE