urelas | f27144aa032e5faa624310ece6b0a5e7dd0ce7b0a741d267444d51ce0c6966f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f27144aa032e5faa624310ece6b0a5e7dd0ce7b0a741d267444d51ce0c6966f8
Size

124KB
MD5

18b56da600efb1dd693e1f5789db24f1
SHA1

6ce6359cc4f86d49f0c39325f95b171c9eefff91
SHA256

f27144aa032e5faa624310ece6b0a5e7dd0ce7b0a741d267444d51ce0c6966f8
SHA512

31e27aacded436b6195aa8bfd650a6cc96ecb08e080078e7f5ea42b9741bacb5b32b0a193e2045dc2f528f6311ee7d96ad28daf7db80e8ac0f9db3b2fb1ac9f3
SSDEEP

1536:DVih9jjOABjWAqUffzNoBcTwE/sNW4Am8NsuPz4cnSXsWjcdy6YAiQ45sIsP:DVSRBPCoLY5RIzNdy6YO45G

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f27144aa032e5faa624310ece6b0a5e7dd0ce7b0a741d267444d51ce0c6966f8

Files

f27144aa032e5faa624310ece6b0a5e7dd0ce7b0a741d267444d51ce0c6966f8
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 74KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IOSDWD
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ