Extracted

• • Target

    82cb56183bb6d08e62662fb5a5ab0800_NeikiAnalytics.exe

  • Size

    6.4MB

  • MD5

    82cb56183bb6d08e62662fb5a5ab0800

  • SHA1

    5340393b4887d9f594c5f48e0070e9d60b4e062d

  • SHA256

    0560165d29ab62a1a6a66386bf33a57395e2efa2f94b3273a07b77252b1ea634

  • SHA512

    a6f9f7b1a0f9a8af7b0e173983eba5507762bdffb6fae29c67848911c92bab448b969cf8757c4405d7020a85ac8c33f434135a32b16b39dc57e220098c2a8b17

  • SSDEEP

    98304:Roc5swrA2XGxlHKcjTjNk3o659yrnfKtDrKIAyyks+Ctf8mQZVSM:i0LrA2kHKQHNk3og9unipQyOaOM

  Score

  10^/10

  urelastrojanupx

  • Urelas

    Urelas is a trojan targeting card games.

    trojanurelas

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Deletes itself

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2