urelas | 0bd335f2bf374682c2f167675b79cc1688fb7231bb666d87e5e59a1d8b8fd052 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0bd335f2bf374682c2f167675b79cc1688fb7231bb666d87e5e59a1d8b8fd052
Size

469KB
MD5

ed4d522463d47fbd827785631021dff5
SHA1

acdb85bee44b2dfed74ddb865aecf9b4a7dd87b9
SHA256

0bd335f2bf374682c2f167675b79cc1688fb7231bb666d87e5e59a1d8b8fd052
SHA512

f3dd4ddab2b6fbb9a72307b24c1d19f16fadee5ad0736d13b8880590df0265f82a4bd61d5e5ff4228f4dec711a589f55e16a533eb854362c7d4825a4f9d39254
SSDEEP

12288:MrKQUXfDqcDib2vqYzGp53ncgqmy0VFHF:MuQcGbOJKpVncg9

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0bd335f2bf374682c2f167675b79cc1688fb7231bb666d87e5e59a1d8b8fd052

Files

0bd335f2bf374682c2f167675b79cc1688fb7231bb666d87e5e59a1d8b8fd052
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ