urelas | bcb065765568ac2a5c4868cbf8428d65829f1d94a4262bc99e37b887a18f5c6f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bcb065765568ac2a5c4868cbf8428d65829f1d94a4262bc99e37b887a18f5c6f
Size

133KB
MD5

0247a62d4643889f342642069f35db79
SHA1

cd68def92871d02ffca3cb44235a48faf3a79c87
SHA256

bcb065765568ac2a5c4868cbf8428d65829f1d94a4262bc99e37b887a18f5c6f
SHA512

d48f38c04ad552b6e1234f4bc98e83429a3f1e642a2d19ecdf57b26865fd86897662c1d5e314f08ebfb98b3570ed1f95bacbe0b61156ce91d341b2203fc9b45a
SSDEEP

1536:IGBozpvLpc3lM8/KedqfTnB8Yux9W1jVTTZufp6kKZLVBzRIUggnqHuoMJpuq:I0UvLa3mfTpNuAkKZZBdBqHuoMJp

Score

10^/10

urelas

Malware Config

Signatures

Urelas family
urelas

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcb065765568ac2a5c4868cbf8428d65829f1d94a4262bc99e37b887a18f5c6f

Files

bcb065765568ac2a5c4868cbf8428d65829f1d94a4262bc99e37b887a18f5c6f
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ