urelas | 62b0886fbeb6f8cf20ef838a057d708be84a62532b8f3613fbe43357a4c68ac1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

62b0886fbeb6f8cf20ef838a057d708be84a62532b8f3613fbe43357a4c68ac1
Size

479KB
MD5

488144303b9ec13e6cf8a00b2162705c
SHA1

2e119d049bd23661dfa86ad71117fb91d30b5549
SHA256

62b0886fbeb6f8cf20ef838a057d708be84a62532b8f3613fbe43357a4c68ac1
SHA512

c8d5274d09f7518bc447243e90ce26890db90ac151e7b4df379e7397b3b99c210bc21fdfbbd685986b62d02964bbaa27620e5552d553fa484e1902b486fa7b9d
SSDEEP

6144:wqXAoQT5Tr9R0HN/3w36EnCYLTcz6MY5NYnE/QhyjxJBErrZAWkPW5oeNtLjpVOl:TQRI/3w36EnCYcFE/iydJai/WZty

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62b0886fbeb6f8cf20ef838a057d708be84a62532b8f3613fbe43357a4c68ac1

Files

62b0886fbeb6f8cf20ef838a057d708be84a62532b8f3613fbe43357a4c68ac1
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ