Extracted

• • Target

    373f25e7da45d48019c326e58ae35696

  • Size

    385KB

  • MD5

    373f25e7da45d48019c326e58ae35696

  • SHA1

    79a09dd556aeff172e35f414c0870b666e4dd1f2

  • SHA256

    c6dc254df0bce3dc3940aa70853bb5f30efc0a4574ef26eb214997c1391bee27

  • SHA512

    073ac403c092da2998afd9d10246219e8038062a06cf9066a4f764c75a14ae48ae0eb179bbeeeb70d86f8ea4f5affb0cda1849eefaa6292b4d959b79c8dad8e8

  • SSDEEP

    6144:tfKUuk3Zz7INHrUP0Q9G9G8rMd1CX4/D1qPDmftZvVhlvDGjaELfDMzPS94dm:NBJzsNfIG0IMHCX4b1qLmvvXlrKVfjMm

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2