urelas | 5a07189a6651f8c50fc1b630fb0c3aa884a79880097e4b9dc28105e30dce3a3a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a07189a6651f8c50fc1b630fb0c3aa884a79880097e4b9dc28105e30dce3a3a
Size

122KB
MD5

bfc44101c670c9cddd3f4bfcbc4a70c1
SHA1

2f5bda02ca77d0abcc02e3527dc15cc189ede552
SHA256

5a07189a6651f8c50fc1b630fb0c3aa884a79880097e4b9dc28105e30dce3a3a
SHA512

73d1d06b89e39998a83e2b5e4438170d8b082e35cfb83136fa1a4b7dffde5b6e592f06e2780bfd537288516b4927d608ae3d5a9c2e7b6f4790719630a5c6b819
SSDEEP

1536:4Vih9jjOABjWAqUffzNoBcTwE/sNW4Am8NsuPz4cnSXsWjcdy6YhQ45uEY/:4VSRBPCoLY5RIzNdy6Y245Tq

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a07189a6651f8c50fc1b630fb0c3aa884a79880097e4b9dc28105e30dce3a3a

Files

5a07189a6651f8c50fc1b630fb0c3aa884a79880097e4b9dc28105e30dce3a3a
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IOSDWD
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE