urelas | 851bf6a5a0fe8dd7eae9e75b0c255b3f9771aa4d77e580ef52d903c43c4fe4ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

851bf6a5a0fe8dd7eae9e75b0c255b3f9771aa4d77e580ef52d903c43c4fe4ce
Size

346KB
MD5

2e2e5f4fcf83319c54d6ceea13653352
SHA1

8853a162f01d982f6f51ec878cce8dea97df4e93
SHA256

851bf6a5a0fe8dd7eae9e75b0c255b3f9771aa4d77e580ef52d903c43c4fe4ce
SHA512

d0cb6fee1ef878f432362a940b65c47682dfafffce8b428d308c1dae844a477ed84370116c3ca23a611846a3250b93d02256c876f52c13d1fd7dc422e879ce54
SSDEEP

6144:gQd7+BuvKTa/OTtIA8IxMDZ/CfH/qhLf691vIgoMg67Upp:5cSOa/02A8I+kfH/8691vno/6o

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
851bf6a5a0fe8dd7eae9e75b0c255b3f9771aa4d77e580ef52d903c43c4fe4ce

Files

851bf6a5a0fe8dd7eae9e75b0c255b3f9771aa4d77e580ef52d903c43c4fe4ce
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ