urelas | 2f9089d2c3b2f51bfd38fac85ec43521b9824f7c540a4b93b3e6bb10e93e95ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f9089d2c3b2f51bfd38fac85ec43521b9824f7c540a4b93b3e6bb10e93e95ab
Size

123KB
MD5

bf5ce026a2100fc0d76c89be74d37180
SHA1

78b88250766e22b7230ded71c2c3d6bd22d61475
SHA256

2f9089d2c3b2f51bfd38fac85ec43521b9824f7c540a4b93b3e6bb10e93e95ab
SHA512

5a5c3923a67749887231d974b42bd92af1c09dac3cd641198b3f8625fddc53434bf572266e93e7b016e6e4f454e0a5c48911105ceb8dde8a5c2beb9495c8d8ba
SSDEEP

1536:DVih9jjOABjWAqUffzNoBcTwE/sNW4Am8NsuPz4cnSXsWjcdy6YAiQ45sIsNe:DVSRBPCoLY5RIzNdy6YO457

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f9089d2c3b2f51bfd38fac85ec43521b9824f7c540a4b93b3e6bb10e93e95ab

Files

2f9089d2c3b2f51bfd38fac85ec43521b9824f7c540a4b93b3e6bb10e93e95ab
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IOSDWD
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ