urelas | 163d54832f0311dcf8f493cc4c857958332a52fcbcb841f64667acdcec388e3e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

163d54832f0311dcf8f493cc4c857958332a52fcbcb841f64667acdcec388e3e
Size

158KB
MD5

3fec48087c612effa2b868187e0de9a3
SHA1

a527ed6302b39d7cb103a081461af2d63ee7bafc
SHA256

163d54832f0311dcf8f493cc4c857958332a52fcbcb841f64667acdcec388e3e
SHA512

9d5aec17e1fe0bde50da06876f1520f73d06b7f6b79b072c8014338ef70601446b51d609377bc2dc82f0d4c9d20915011dc01a5dd7756e72c412626eddbad9c2
SSDEEP

1536:JJ7RmwVTSktuc6K2JI8ubZBpWO/ljXGjHBX7oVlU2gumBMokip3boMqO5FDHTf:jRmw5SJJ0djXGjd7QzmMokip1qObn

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
163d54832f0311dcf8f493cc4c857958332a52fcbcb841f64667acdcec388e3e

Files

163d54832f0311dcf8f493cc4c857958332a52fcbcb841f64667acdcec388e3e
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 65KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fdhjygdf
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE