urelas | 1d06d0c1a115868a8ada8e6096a05df82c1ff2f3b0c8d2c64df41669467f76ea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1d06d0c1a115868a8ada8e6096a05df82c1ff2f3b0c8d2c64df41669467f76ea
Size

158KB
MD5

70c573f262dbacd8b9657bd3113a8008
SHA1

f06b10d7bc4c808f8a21402233cf94e1196a7c43
SHA256

1d06d0c1a115868a8ada8e6096a05df82c1ff2f3b0c8d2c64df41669467f76ea
SHA512

85831bb508f6d4ecd90808c2e39ec40a97c8013cf989001d3f706aa275281ea8ccdba0bf7f23a097ad2b196fe6a61c79837276ef0b6897d4432415735cf81a2f
SSDEEP

1536:8iVlUPlfHeARjOsOAe2zBN7lE4U1sgzAom8JsuPIclSXsWjcdd6YGJYwYcTl:nVlUPZRxfxE9Vs5cfdd6YGGITl

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1d06d0c1a115868a8ada8e6096a05df82c1ff2f3b0c8d2c64df41669467f76ea

Files

1d06d0c1a115868a8ada8e6096a05df82c1ff2f3b0c8d2c64df41669467f76ea
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ