Extracted

• • Target

    3eb1e68377fb22d4b531be21ecda0f45

  • Size

    457KB

  • MD5

    3eb1e68377fb22d4b531be21ecda0f45

  • SHA1

    f2063ab713fb85b60db9bd9a756935ce1b1db294

  • SHA256

    30bc6aac70c297dbc3f99cc8330d5cf5e0e67a71f87ed2342279501dae62a69a

  • SHA512

    37d3c1aaac772a1f2e1811aebcd558681b41b2b21f5eb37a1a1f15cf8a132772a4d6d5ba13d4fc87f5f7f577afa3f2ec9342bb838318cfc7bcfdc73e4e3bf5ef

  • SSDEEP

    6144:r/VW8rQ+dqof6VcVttGhZsXtvmqoI+CNLOnmIbCM2dWwh3gNUie2Jy+5vmSZGpq:ZtaQt+ZsFeI+CSZbyKLe2JPFl

  Score

  10^/10

  urelasaspackv2trojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2