urelas | f783f43b7bf73a4e958a5848f8a5a0a960ead758bc1684f6eca33f503ef696e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f783f43b7bf73a4e958a5848f8a5a0a960ead758bc1684f6eca33f503ef696e3
Size

120KB
MD5

a2816628cac73572742ff6b8c4551a5b
SHA1

9cba55b65fe9bd6d8c3f3bd71f87d34facbd90bf
SHA256

f783f43b7bf73a4e958a5848f8a5a0a960ead758bc1684f6eca33f503ef696e3
SHA512

07b0b8b3950dfcf47c8a8491222bfdeeef69062623c0332d1c9a75bb2bc6a1ec27b043b72e0f9134d163bb72dfa35adbe5cc16bec28897baea850681feee705d
SSDEEP

1536:Mt/oSlEjl40ed9Yh848kz/mLKxwrCoacC5usWjcdl6EWGRLCsxKpA5x:Mtgqvi9nMKxQbK5xl6EWGpCsxKef

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f783f43b7bf73a4e958a5848f8a5a0a960ead758bc1684f6eca33f503ef696e3

Files

f783f43b7bf73a4e958a5848f8a5a0a960ead758bc1684f6eca33f503ef696e3
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

HUSDTWDW
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ