urelas | 75bb7e05ffc7fe06b9ca1948ea4ed32607cb56b29ccaaf65fd288deb159d3f18 | Triage

Sharing

General

Target

75bb7e05ffc7fe06b9ca1948ea4ed32607cb56b29ccaaf65fd288deb159d3f18
Size

149KB
MD5

2161d47a13edf72c40953d0ce04f5c5e
SHA1

aa5b325b66b6ea3b4e02e0a35225431b61b454c7
SHA256

75bb7e05ffc7fe06b9ca1948ea4ed32607cb56b29ccaaf65fd288deb159d3f18
SHA512

cc8b6d148d6ca7044a5093fe3683e345a6d190e992abc75b794ce79677efd816978c5e8a051bdfb1a3c0f3cd8308353ce41dae673b94a3dad0c67f160d9df570
SSDEEP

1536:m8BpTjAdbGbp9WbtGnQb2fVO2zcpsbLo9ruUWpal3nHPPfTIX65zCtkBSsGu/QyK:m8sSpvo0LKrXEX65etu7v0

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
75bb7e05ffc7fe06b9ca1948ea4ed32607cb56b29ccaaf65fd288deb159d3f18

Files

75bb7e05ffc7fe06b9ca1948ea4ed32607cb56b29ccaaf65fd288deb159d3f18
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

.text
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

hsuhfuef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ