Extracted

• • Target

    c88834ccb8bf596065a968b999ea7bf0_NeikiAnalytics

  • Size

    429KB

  • MD5

    c88834ccb8bf596065a968b999ea7bf0

  • SHA1

    a1bd66b9a41154790045ef80afcf1c0658e40e20

  • SHA256

    dfcb2364b7c5fdd15d2ccc988d6746f5b4ebc2d3b4cc702ba0579e561403cfba

  • SHA512

    de1f24397d65fd8ae201f6220a0784f9bf0bdff1ed3424ce6b2a41f76b27fc642a673a5bd0fab4caf9ac1226d44b7a7ce44a8733f2b3bd9c6ed127670c17b90e

  • SSDEEP

    6144:hGOMmhsKI2ir5crKFHLZx2LpLDXeZOXOS/6zbQ:hGOIB5crKFHLZx2LpPeZO5

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2