Extracted

• • Target

    ff87d3344db8278ea877e9e5a3288fab_JaffaCakes118

  • Size

    411KB

  • MD5

    ff87d3344db8278ea877e9e5a3288fab

  • SHA1

    107f1e16d3a320332df626182d090740d3a5d2fc

  • SHA256

    3440b1488ab8f40d03f054481b4e7dde3dc9f5a6794b233b83339b4527d23256

  • SHA512

    ed064abd7988248858f23ac078f118835e61a37e62e6934873249d3d75884ebed3b108609d319d62d271aa053f52a79ea02e403216b76d45b7e67cbf283e9b6a

  • SSDEEP

    6144:kzU7blKaP2iCWhWapKRaRXOkN4Swel6f3IsInOYKa:eU7M5ijWh0XOW4sEfeOY

  Score

  10^/10

  urelasaspackv2trojan

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2